Detection and Mitigation of SYN Flooding Attacks through SYN/ACK Packets and Black/White Lists

Software-defined networking (SDN) is a new network architecture that provides programmable networks, more efficient network management, and centralized control than traditional networks. The TCP SYN flooding attack is one of the most aggressive network attacks that can seriously degrade network perf...

Descripción completa

Detalles Bibliográficos
Autores principales: Yang, Chun-Hao, Wu, Jhen-Ping, Lee, Fang-Yi, Lin, Ting-Yu, Tsai, Meng-Hsun
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2023
Materias:
Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10143797/
https://www.ncbi.nlm.nih.gov/pubmed/37112158
http://dx.doi.org/10.3390/s23083817
Descripción
Sumario:Software-defined networking (SDN) is a new network architecture that provides programmable networks, more efficient network management, and centralized control than traditional networks. The TCP SYN flooding attack is one of the most aggressive network attacks that can seriously degrade network performance. This paper proposes detection and mitigation modules against SYN flooding attacks in SDN. We combine those modules, which have evolved from the cuckoo hashing method and innovative whitelist, to get better performance compared to current methods Our approach reduces the traffic through the switch and improves detection accuracy, also the required register size is reduced by half for the same accuracy.

Ejemplares similares