HYBRID MODELING SYSTEM FOR DDoS ATTCKS PROTECTION METHODS DEVELOPMENT AND TESTING

Protection against distributed attacks «distributed denial of service» (DDoS) is a very important task nowadays. In the paper we introduce a hybrid system for simulating DDoS attacks and computer network protection techniques. The developed system makes it possible to create various network topologies, perform experiments with DDoS attack simulation, develop new protection methods and test the existing ones. The suggested system not only allows us to design virtual networks, but also makes it possible to connect real network nodes for improving the accuracy of the experiments. The paper contains information on component formal models and system architecture. We also describe virtual network verification relative to a real network. Furthermore, we provide the experiments devoted to DDoS attacks and operation of the protection techniques.

Authors: K. А. Borisenko, Ya. А. Bekeneva, N. N. Shipilov, A. V. Shorov

Direction: Informatics and Computer Technologies

Keywords: DDoS attack, virtual network, real network, simulation modeling, client behavior scenario, protection techniques, OMNeT++, INET, ReaSE, PlanetLab, SYN Flooding, HTTP Flooding, Egress Filtering


View full article