Measurement Based Evaluation and Mitigation of Flood Attacks on a LAN Test-Bed

TitleMeasurement Based Evaluation and Mitigation of Flood Attacks on a LAN Test-Bed
Publication TypeConference Paper
Year of Publication2023
AuthorsNasereddin M, Nakip M, Gelenbe E
Conference NameThe 48th IEEE Conference on Local Computer Networks
Conference LocationDaytona Beach, Florida, USA
KeywordsCybersecurity, Internet of Things, Intrusion Detection and Mitigation, Local Area Networks, UDP Flood Attacks

The IoT is vulnerable to network attacks, and Intrusion Detection Systems (IDS) can provide high attack detection accuracy and are easily installed in IoT Servers. However, IDS are seldom evaluated in operational conditions which are seriously impaired by attack overload. Thus a Local Area Network testbed is used to evaluate the impact of UDP Flood Attacks on an IoT Server, whose first line of defence is an accurate IDS. We show that attacks overload the multi-core Server and paralyze its IDS. Thus a mitigation scheme that detects attacks rapidly, and drops packets within milli-seconds after the attack begins, is proposed and experimentally evaluated.


PDF version: 

Historia zmian

Data aktualizacji: 31/10/2023 - 15:10; autor zmian: Mohammed Nasereddin (