Quantifying distributed system stability through simulation: A case study of an agent-based system for flow reconstruction of DDoS attacks

Omer Demir, Bilal Khan

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

We investigate the stability properties of a novel agent-based system for the detection of network bandwidthbased distributed denial of service (DDoS) attacks. The proposed system provides a description of the structure of flows which comprise the DDoS attack. In doing so, it facilitates DDoS mitigation at or near attack traffic sources. The constituent agents within the system operate at the inter autonomous system (AS) level, comprising a distributed collection of IP-layer network taps which self-organize in response to attack flows. We formalize the notion of stability for the proposed system, and show how we can use simulation to identify regions of instability within the system's parameter space. We then modify our system design to circumvent the uncovered singularities, and demonstrate the efficacy and tradeoffs implicit in our redesigned system.

Original languageEnglish (US)
Title of host publicationISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation
Pages312-317
Number of pages6
DOIs
StatePublished - Apr 21 2010
EventUKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation, ISMS 2010 - Liverpool, United Kingdom
Duration: Jan 27 2010Jan 29 2010

Publication series

NameISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation

Other

OtherUKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation, ISMS 2010
CountryUnited Kingdom
CityLiverpool
Period1/27/101/29/10

Fingerprint

Agent-based Systems
Denial of Service
System stability
Distributed Systems
Attack
Simulation
Network layers
Systems analysis
Distributed Networks
Autonomous Systems
System Design
Parameter Space
Efficacy
Trade-offs
Denial-of-service attack
Traffic
Singularity
Demonstrate

Keywords

  • Agent-based
  • Distributed denial of service
  • Flow reconstruction
  • Simulation
  • Stability

ASJC Scopus subject areas

  • Computer Science(all)
  • Theoretical Computer Science

Cite this

Demir, O., & Khan, B. (2010). Quantifying distributed system stability through simulation: A case study of an agent-based system for flow reconstruction of DDoS attacks. In ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation (pp. 312-317). [5416074] (ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation). https://doi.org/10.1109/ISMS.2010.90

Quantifying distributed system stability through simulation : A case study of an agent-based system for flow reconstruction of DDoS attacks. / Demir, Omer; Khan, Bilal.

ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation. 2010. p. 312-317 5416074 (ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Demir, O & Khan, B 2010, Quantifying distributed system stability through simulation: A case study of an agent-based system for flow reconstruction of DDoS attacks. in ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation., 5416074, ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation, pp. 312-317, UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation, ISMS 2010, Liverpool, United Kingdom, 1/27/10. https://doi.org/10.1109/ISMS.2010.90
Demir O, Khan B. Quantifying distributed system stability through simulation: A case study of an agent-based system for flow reconstruction of DDoS attacks. In ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation. 2010. p. 312-317. 5416074. (ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation). https://doi.org/10.1109/ISMS.2010.90
Demir, Omer ; Khan, Bilal. / Quantifying distributed system stability through simulation : A case study of an agent-based system for flow reconstruction of DDoS attacks. ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation. 2010. pp. 312-317 (ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation).
@inproceedings{d5ec48ae27c44f41b42516c74e6c0f5d,
title = "Quantifying distributed system stability through simulation: A case study of an agent-based system for flow reconstruction of DDoS attacks",
abstract = "We investigate the stability properties of a novel agent-based system for the detection of network bandwidthbased distributed denial of service (DDoS) attacks. The proposed system provides a description of the structure of flows which comprise the DDoS attack. In doing so, it facilitates DDoS mitigation at or near attack traffic sources. The constituent agents within the system operate at the inter autonomous system (AS) level, comprising a distributed collection of IP-layer network taps which self-organize in response to attack flows. We formalize the notion of stability for the proposed system, and show how we can use simulation to identify regions of instability within the system's parameter space. We then modify our system design to circumvent the uncovered singularities, and demonstrate the efficacy and tradeoffs implicit in our redesigned system.",
keywords = "Agent-based, Distributed denial of service, Flow reconstruction, Simulation, Stability",
author = "Omer Demir and Bilal Khan",
year = "2010",
month = "4",
day = "21",
doi = "10.1109/ISMS.2010.90",
language = "English (US)",
isbn = "9780769539737",
series = "ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation",
pages = "312--317",
booktitle = "ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation",

}

TY - GEN

T1 - Quantifying distributed system stability through simulation

T2 - A case study of an agent-based system for flow reconstruction of DDoS attacks

AU - Demir, Omer

AU - Khan, Bilal

PY - 2010/4/21

Y1 - 2010/4/21

N2 - We investigate the stability properties of a novel agent-based system for the detection of network bandwidthbased distributed denial of service (DDoS) attacks. The proposed system provides a description of the structure of flows which comprise the DDoS attack. In doing so, it facilitates DDoS mitigation at or near attack traffic sources. The constituent agents within the system operate at the inter autonomous system (AS) level, comprising a distributed collection of IP-layer network taps which self-organize in response to attack flows. We formalize the notion of stability for the proposed system, and show how we can use simulation to identify regions of instability within the system's parameter space. We then modify our system design to circumvent the uncovered singularities, and demonstrate the efficacy and tradeoffs implicit in our redesigned system.

AB - We investigate the stability properties of a novel agent-based system for the detection of network bandwidthbased distributed denial of service (DDoS) attacks. The proposed system provides a description of the structure of flows which comprise the DDoS attack. In doing so, it facilitates DDoS mitigation at or near attack traffic sources. The constituent agents within the system operate at the inter autonomous system (AS) level, comprising a distributed collection of IP-layer network taps which self-organize in response to attack flows. We formalize the notion of stability for the proposed system, and show how we can use simulation to identify regions of instability within the system's parameter space. We then modify our system design to circumvent the uncovered singularities, and demonstrate the efficacy and tradeoffs implicit in our redesigned system.

KW - Agent-based

KW - Distributed denial of service

KW - Flow reconstruction

KW - Simulation

KW - Stability

UR - http://www.scopus.com/inward/record.url?scp=77950939984&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=77950939984&partnerID=8YFLogxK

U2 - 10.1109/ISMS.2010.90

DO - 10.1109/ISMS.2010.90

M3 - Conference contribution

AN - SCOPUS:77950939984

SN - 9780769539737

T3 - ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation

SP - 312

EP - 317

BT - ISMS 2010 - UKSim/AMSS 1st International Conference on Intelligent Systems, Modelling and Simulation

ER -