Distributed Denial of Service attack on cloud: Detection and prevention

Bikram Khadka; Chandana Withana; Abeer Alsadoon; Amr Elchouemi

doi:10.1109/IEMCON.2015.7344496

Distributed Denial of Service attack on cloud: Detection and prevention

Bikram Khadka, Chandana Withana, Abeer Alsadoon, Amr Elchouemi

Research output: Book chapter/Published conference paper › Conference paper › peer-review

13 Citations (Scopus)

Abstract

Cloud computing is a distributive and scalable computing architecture. It provides sharing of data and other resources which are accessible from any part of the world for a very low cost. However, Security is one major concern for such computing environment. Distributed Denial of Service (DDoS) is an attack that consumes all the cloud resources may have making it unavailable to other general users. This paper identifies characteristics of DDoS attack and provides an Intrusion Detection System (IDS) tool based on Snort to detect DDoS. The proposed tool will alert the network administrator regarding any attack for any possible resources and the nature of the attack. Also, it suspends the attacker for some time to allow the network admin to implement a fall back plan. As Snort is an open source system, modifying different parameters of the system showed a significant aid in not only detection of DDoS, but also reduction the time for the down time of the network. The proposed tool helps minimize the effect of DDoS by detecting the attack at very early stage and by altering with various parameters which facilitates easy diagnose of the problem.

Original language	English
Title of host publication	2015 International Conference and Workshop on Computing and Communication, IEMCON 2015
Editors	Satyajit Chakrabarti, Himadri Nath Saha
Publisher	IEEE, Institute of Electrical and Electronics Engineers
Number of pages	6
ISBN (Electronic)	9781479969081
ISBN (Print)	9781479969074
DOIs	https://doi.org/10.1109/IEMCON.2015.7344496
Publication status	Published - 02 Dec 2015
Event	6th International Conference and Workshop on Computing and Communication, IEMCON 2015 - University of British Columbia, Vancouver, Canada Duration: 15 Oct 2015 → 17 Oct 2015 https://web.archive.org/web/20151103163401/http://www.iemcon.org/index.php

Publication series

Name	2015 International Conference and Workshop on Computing and Communication, IEMCON 2015

Conference

Conference	6th International Conference and Workshop on Computing and Communication, IEMCON 2015
Country/Territory	Canada
City	Vancouver
Period	15/10/15 → 17/10/15
Internet address	https://web.archive.org/web/20151103163401/http://www.iemcon.org/index.php

Access to Document

10.1109/IEMCON.2015.7344496

Cite this

Khadka, B., Withana, C., Alsadoon, A., & Elchouemi, A. (2015). Distributed Denial of Service attack on cloud: Detection and prevention. In S. Chakrabarti, & H. N. Saha (Eds.), 2015 International Conference and Workshop on Computing and Communication, IEMCON 2015 Article 7344496 (2015 International Conference and Workshop on Computing and Communication, IEMCON 2015). IEEE, Institute of Electrical and Electronics Engineers. https://doi.org/10.1109/IEMCON.2015.7344496

Khadka, Bikram ; Withana, Chandana ; Alsadoon, Abeer et al. / Distributed Denial of Service attack on cloud : Detection and prevention. 2015 International Conference and Workshop on Computing and Communication, IEMCON 2015. editor / Satyajit Chakrabarti ; Himadri Nath Saha. IEEE, Institute of Electrical and Electronics Engineers, 2015. (2015 International Conference and Workshop on Computing and Communication, IEMCON 2015).

@inproceedings{e419d4a80c764d8085e2eecb5442fd12,

title = "Distributed Denial of Service attack on cloud: Detection and prevention",

abstract = "Cloud computing is a distributive and scalable computing architecture. It provides sharing of data and other resources which are accessible from any part of the world for a very low cost. However, Security is one major concern for such computing environment. Distributed Denial of Service (DDoS) is an attack that consumes all the cloud resources may have making it unavailable to other general users. This paper identifies characteristics of DDoS attack and provides an Intrusion Detection System (IDS) tool based on Snort to detect DDoS. The proposed tool will alert the network administrator regarding any attack for any possible resources and the nature of the attack. Also, it suspends the attacker for some time to allow the network admin to implement a fall back plan. As Snort is an open source system, modifying different parameters of the system showed a significant aid in not only detection of DDoS, but also reduction the time for the down time of the network. The proposed tool helps minimize the effect of DDoS by detecting the attack at very early stage and by altering with various parameters which facilitates easy diagnose of the problem.",

keywords = "cloud computing, DDoS, open-source, security, snort",

author = "Bikram Khadka and Chandana Withana and Abeer Alsadoon and Amr Elchouemi",

year = "2015",

month = dec,

day = "2",

doi = "10.1109/IEMCON.2015.7344496",

language = "English",

isbn = "9781479969074",

series = "2015 International Conference and Workshop on Computing and Communication, IEMCON 2015",

publisher = "IEEE, Institute of Electrical and Electronics Engineers",

editor = "Satyajit Chakrabarti and Saha, {Himadri Nath}",

booktitle = "2015 International Conference and Workshop on Computing and Communication, IEMCON 2015",

address = "United States",

note = "6th International Conference and Workshop on Computing and Communication, IEMCON 2015 ; Conference date: 15-10-2015 Through 17-10-2015",

url = "https://web.archive.org/web/20151103163401/http://www.iemcon.org/index.php",

}

Khadka, B, Withana, C, Alsadoon, A & Elchouemi, A 2015, Distributed Denial of Service attack on cloud: Detection and prevention. in S Chakrabarti & HN Saha (eds), 2015 International Conference and Workshop on Computing and Communication, IEMCON 2015., 7344496, 2015 International Conference and Workshop on Computing and Communication, IEMCON 2015, IEEE, Institute of Electrical and Electronics Engineers, 6th International Conference and Workshop on Computing and Communication, IEMCON 2015, Vancouver, British Columbia, Canada, 15/10/15. https://doi.org/10.1109/IEMCON.2015.7344496

Distributed Denial of Service attack on cloud: Detection and prevention. / Khadka, Bikram; Withana, Chandana; Alsadoon, Abeer et al.
2015 International Conference and Workshop on Computing and Communication, IEMCON 2015. ed. / Satyajit Chakrabarti; Himadri Nath Saha. IEEE, Institute of Electrical and Electronics Engineers, 2015. 7344496 (2015 International Conference and Workshop on Computing and Communication, IEMCON 2015).

Research output: Book chapter/Published conference paper › Conference paper › peer-review

TY - GEN

T1 - Distributed Denial of Service attack on cloud

T2 - 6th International Conference and Workshop on Computing and Communication, IEMCON 2015

AU - Khadka, Bikram

AU - Withana, Chandana

AU - Alsadoon, Abeer

AU - Elchouemi, Amr

PY - 2015/12/2

Y1 - 2015/12/2

N2 - Cloud computing is a distributive and scalable computing architecture. It provides sharing of data and other resources which are accessible from any part of the world for a very low cost. However, Security is one major concern for such computing environment. Distributed Denial of Service (DDoS) is an attack that consumes all the cloud resources may have making it unavailable to other general users. This paper identifies characteristics of DDoS attack and provides an Intrusion Detection System (IDS) tool based on Snort to detect DDoS. The proposed tool will alert the network administrator regarding any attack for any possible resources and the nature of the attack. Also, it suspends the attacker for some time to allow the network admin to implement a fall back plan. As Snort is an open source system, modifying different parameters of the system showed a significant aid in not only detection of DDoS, but also reduction the time for the down time of the network. The proposed tool helps minimize the effect of DDoS by detecting the attack at very early stage and by altering with various parameters which facilitates easy diagnose of the problem.

AB - Cloud computing is a distributive and scalable computing architecture. It provides sharing of data and other resources which are accessible from any part of the world for a very low cost. However, Security is one major concern for such computing environment. Distributed Denial of Service (DDoS) is an attack that consumes all the cloud resources may have making it unavailable to other general users. This paper identifies characteristics of DDoS attack and provides an Intrusion Detection System (IDS) tool based on Snort to detect DDoS. The proposed tool will alert the network administrator regarding any attack for any possible resources and the nature of the attack. Also, it suspends the attacker for some time to allow the network admin to implement a fall back plan. As Snort is an open source system, modifying different parameters of the system showed a significant aid in not only detection of DDoS, but also reduction the time for the down time of the network. The proposed tool helps minimize the effect of DDoS by detecting the attack at very early stage and by altering with various parameters which facilitates easy diagnose of the problem.

KW - cloud computing

KW - DDoS

KW - open-source

KW - security

KW - snort

UR - http://www.scopus.com/inward/record.url?scp=84960940191&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84960940191&partnerID=8YFLogxK

U2 - 10.1109/IEMCON.2015.7344496

DO - 10.1109/IEMCON.2015.7344496

M3 - Conference paper

AN - SCOPUS:84960940191

SN - 9781479969074

T3 - 2015 International Conference and Workshop on Computing and Communication, IEMCON 2015

BT - 2015 International Conference and Workshop on Computing and Communication, IEMCON 2015

A2 - Chakrabarti, Satyajit

A2 - Saha, Himadri Nath

PB - IEEE, Institute of Electrical and Electronics Engineers

Y2 - 15 October 2015 through 17 October 2015

ER -

Khadka B, Withana C, Alsadoon A, Elchouemi A. Distributed Denial of Service attack on cloud: Detection and prevention. In Chakrabarti S, Saha HN, editors, 2015 International Conference and Workshop on Computing and Communication, IEMCON 2015. IEEE, Institute of Electrical and Electronics Engineers. 2015. 7344496. (2015 International Conference and Workshop on Computing and Communication, IEMCON 2015). doi: 10.1109/IEMCON.2015.7344496

Distributed Denial of Service attack on cloud: Detection and prevention

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this