Blockchain Signaling System (BloSS): Cooperative Signaling of Distributed Denial-of-Service Attacks
- PDF / 2,595,816 Bytes
- 37 Pages / 439.37 x 666.142 pts Page_size
- 8 Downloads / 180 Views
Blockchain Signaling System (BloSS): Cooperative Signaling of Distributed Denial-of-Service Attacks Bruno Rodrigues1 · Eder Scheid1 · Christian Killer1 · Muriel Franco1 · Burkhard Stiller1 Received: 9 May 2020 / Revised: 13 July 2020 / Accepted: 28 July 2020 / Published online: 24 August 2020 © The Author(s) 2020
Abstract Distributed Denial-of-Service (DDoS) attacks are one of the major causes of concerns for communication service providers. When an attack is highly sophisticated and no countermeasures are available directly, sharing hardware and defense capabilities become a compelling alternative. Future network and service management can base its operations on equally distributed systems to neutralize highly distributed DDoS attacks. A cooperative defense allows for the combination of detection and mitigation capabilities, the reduction of overhead at a single point, and the blockage of malicious traffic near its source. Main challenges impairing the widespread deployment of existing cooperative defense are: (a) high complexity of operation and coordination, (b) need for trusted and secure communications, (c) lack of incentives for service providers to cooperate, and (d) determination on how operations of these systems are affected by different legislation, regions, and countries. The cooperative Blockchain Signaling System (BloSS) defines an effective and alternative solution for security management, especially cooperative defenses, by exploiting Blockchains (BC) and Software-Defined Networks (SDN) for sharing attack information, an exchange of incentives, and tracking of reputation in a fully distributed and automated fashion. Therefore, BloSS was prototyped and evaluated through a global experiment, without the burden to maintain, design, and develop special registries and gossip protocols. Keywords Distributed Denial-of-Service · Security · Blockchain · Software-Defined Networks · Security Management
* Bruno Rodrigues [email protected] Extended author information available on the last page of the article
13
Vol.:(0123456789)
954
Journal of Network and Systems Management (2020) 28:953–989
1 Introduction The technological evolution has built a digitally networked society, in which the Internet is an indispensable basis for interactions. As the number of connected devices (mobile and stationary) increases, the complexity of systems providing content for these devices and their communication network grew in a similar proportion in support of the rocketing volume of traffic [1]. As a consequence, complex distributed systems are subject to several types of failures and threats that can compromise critical infrastructures of societies [2]. Although a Distributed Denial-of-Service (DDoS) is a widely known attack type, it remains one of the significant causes of concerns for service providers [5]. As observed (cf. Fig. 1, left) the number of IoT (Internet-of-Things) devices is surpassing the number of non-IoT devices, e.g., mobile phones, laptops, or computers. IoT devices, ranging from small sensors to h
Data Loading...
