Additional Calendars
Calendar Views
All
Athletics
Conferences and Meetings
Law School
Special Events
Student Life

ECE Master of Science Thesis Defense By: Cameron S.Whittle

When: Tuesday, March 30, 2021
12:00 PM - 2:00 PM
Where: > See description for location
Cost: Free
Description: Topic: Mitigation Techniques Against Distributed Denial of Service Attacks on Software Defined Networks

Zoom Teleconference: https://umassd.zoom.us/j/98929767625
Meeting ID: 989 2976 7625
Passcode: 310822

Abstract:
With the rise of devices integrated with computer networks, coined as the Internet-of-Things (IoT), it was only a matter of time before cyber criminals found new ways to cripple critical communication-based infrastructures. A common type of attack that has been around for years, adopting itself for vast variances, is the infamous denial-of-service (DoS) attack. These attacks strategically halt network services by injecting heavy traffic, directly stalling the availability of a system for legitimate users. This can cause companies to lose millions of dollars in revenue and even open the system up to new vulnerabilities. Due to the criticality of a rapid and effective upgrade to security, many companies and engineers have designed systems to detect and/or mitigate possible incoming attacks. The introduction of virtualized and programmable networks, named software defined networks (SDNs), advances modern communication applications with performance flexibility while enhancing security-based controls. Many solutions focused on keeping track of the potential damage caused by each individual IP (packet filtering approaches). As cyber criminals evolved, they looked to become sneakier and harder to detect. Expanding upon the attack format of DoS attacks, the distributed denial-of-service (DDoS) attack emerged. This format utilized a coordinated army of interconnected devices to disguise the attack as random/normal traffic. This work investigates mitigation techniques against DDoS attacks on SDNs. An SDN is setup with Mininet, a Linux-based network emulator, to create a virtual internet testbed for experiments. The investigation focuses on the TCP SYN flood attack that exploits vulnerabilities in the three-way TCP handshake protocol to lock up a host from serving new users. Utilizing machine learning and smart algorithms, SDNs actively monitors all possible traffic as a collective dataset to detect DDoS attacks in real time. The defense further invests on entropy methods to improve early detection of DDoS attacks within the testbed environment. Entropy allows SDNs to learn the expected normal traffic patterns for a network as a whole using real time mathematical calculations, so that the SDN controllers can sense the distributed attack vectors building up before they overwhelm the network. The work reveals the vulnerabilities of SDNs to stealthy DDoS attacks and demonstrates the effectiveness of deploying entropy in SDN controllers for detection and mitigation purposes.

Note: All ECE Graduate Students are ENCOURAGED to join the zoom teleconference. All interested parties are invited to join.

Advisor: Dr. Hong Liu
Committee Members: Dr. Liudong Xing, Department of Electrical & Computer Engineering, UMass Dartmouth; Dr. Hernan Ulloa, General Dynamics, Taunton, MA

*For further information, please contact Dr. Hong Liu via email at hliu@umassd.edu.
Topical Areas: Alumni, Faculty, General Public, Staff and Administrators, Students, University Community, College of Engineering, Electrical and Computer Engineering