Experimental evaluation of DDoS detection and prevention using open-source and commodity hardware
Master thesis
Permanent lenke
http://hdl.handle.net/11250/2504043Utgivelsesdato
2018Metadata
Vis full innførselSamlinger
Sammendrag
Distributed Denial of Service (DDoS) attack is a serious threat to companies with an active online business as its scope is increasing in size, frequency and complexity. That is why it has become a high priority task to prevent DDoS attack for the internet stakeholders. The complexity of DDoS attacks makes their detection and mitigation difficult. Moreover, the high operational costs to deploy mitigation solutions makes deployment at the edge of victim networks not cost-effective. On the other hand, improvements in modern commodity hardware and software architecture exhibit tremendous power to process network traffics. Combining this with online available, flexible and effective open source DDoS detection tools can give an efficient solution to mitigate DDoS attacks. The goal of this research is to study the possibilities and performance of DDoS detection and prevention on commodity hardware using open source solutions. The experiment is carried out in the implemented experimental DDoS detection testbed. Based on findings during the work of this thesis, we have come to the conclusion that using commodity hardware with effective DDoS detection application like fastnetmon and improved fast packet capturing frameworks such as netmap andPF_Ring ZC, has a potential and can effectively be used at the victim end for DDoS defense mechanism.