Cargando…
A Novel Topology Link-Controlling Approach for Active Defense of Nodes in Networks
With the rapid development of virtual machine technology and cloud computing, distributed denial of service (DDoS) attacks, or some peak traffic, poses a great threat to the security of the network. In this paper, a novel topology link control technique and mitigation attacks in real-time environmen...
| Autores principales: | , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2017
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC5375839/ https://www.ncbi.nlm.nih.gov/pubmed/28282962 http://dx.doi.org/10.3390/s17030553 |
| _version_ | 1782519068177203200 |
|---|---|
| author | Li, Jun Hu, HanPing Ke, Qiao Xiong, Naixue |
| author_facet | Li, Jun Hu, HanPing Ke, Qiao Xiong, Naixue |
| author_sort | Li, Jun |
| collection | PubMed |
| description | With the rapid development of virtual machine technology and cloud computing, distributed denial of service (DDoS) attacks, or some peak traffic, poses a great threat to the security of the network. In this paper, a novel topology link control technique and mitigation attacks in real-time environments is proposed. Firstly, a non-invasive method of deploying virtual sensors in the nodes is built, which uses the resource manager of each monitored node as a sensor. Secondly, a general topology-controlling approach of resisting the tolerant invasion is proposed. In the proposed approach, a prediction model is constructed by using copula functions for predicting the peak of a resource through another resource. The result of prediction determines whether or not to initiate the active defense. Finally, a minority game with incomplete strategy is employed to suppress attack flows and improve the permeability of the normal flows. The simulation results show that the proposed approach is very effective in protecting nodes. |
| format | Online Article Text |
| id | pubmed-5375839 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2017 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-53758392017-04-10 A Novel Topology Link-Controlling Approach for Active Defense of Nodes in Networks Li, Jun Hu, HanPing Ke, Qiao Xiong, Naixue Sensors (Basel) Article With the rapid development of virtual machine technology and cloud computing, distributed denial of service (DDoS) attacks, or some peak traffic, poses a great threat to the security of the network. In this paper, a novel topology link control technique and mitigation attacks in real-time environments is proposed. Firstly, a non-invasive method of deploying virtual sensors in the nodes is built, which uses the resource manager of each monitored node as a sensor. Secondly, a general topology-controlling approach of resisting the tolerant invasion is proposed. In the proposed approach, a prediction model is constructed by using copula functions for predicting the peak of a resource through another resource. The result of prediction determines whether or not to initiate the active defense. Finally, a minority game with incomplete strategy is employed to suppress attack flows and improve the permeability of the normal flows. The simulation results show that the proposed approach is very effective in protecting nodes. MDPI 2017-03-09 /pmc/articles/PMC5375839/ /pubmed/28282962 http://dx.doi.org/10.3390/s17030553 Text en © 2017 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Li, Jun Hu, HanPing Ke, Qiao Xiong, Naixue A Novel Topology Link-Controlling Approach for Active Defense of Nodes in Networks |
| title | A Novel Topology Link-Controlling Approach for Active Defense of Nodes in Networks |
| title_full | A Novel Topology Link-Controlling Approach for Active Defense of Nodes in Networks |
| title_fullStr | A Novel Topology Link-Controlling Approach for Active Defense of Nodes in Networks |
| title_full_unstemmed | A Novel Topology Link-Controlling Approach for Active Defense of Nodes in Networks |
| title_short | A Novel Topology Link-Controlling Approach for Active Defense of Nodes in Networks |
| title_sort | novel topology link-controlling approach for active defense of nodes in networks |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC5375839/ https://www.ncbi.nlm.nih.gov/pubmed/28282962 http://dx.doi.org/10.3390/s17030553 |
| work_keys_str_mv | AT lijun anoveltopologylinkcontrollingapproachforactivedefenseofnodesinnetworks AT huhanping anoveltopologylinkcontrollingapproachforactivedefenseofnodesinnetworks AT keqiao anoveltopologylinkcontrollingapproachforactivedefenseofnodesinnetworks AT xiongnaixue anoveltopologylinkcontrollingapproachforactivedefenseofnodesinnetworks AT lijun noveltopologylinkcontrollingapproachforactivedefenseofnodesinnetworks AT huhanping noveltopologylinkcontrollingapproachforactivedefenseofnodesinnetworks AT keqiao noveltopologylinkcontrollingapproachforactivedefenseofnodesinnetworks AT xiongnaixue noveltopologylinkcontrollingapproachforactivedefenseofnodesinnetworks |