loading
Papers

Research.Publish.Connect.

Paper

Authors: Sonia Haddad-Vanier 1 ; Celine Gicquel 2 ; Lila Boukhatem 2 ; Kahina Lazri 3 and Paul Chaignon 3

Affiliations: 1 SAMM Université Paris I Panthéon Sorbonne and France ; 2 LRI, CNRS - Université Paris Saclay, Université Paris-Sud and France ; 3 Orange Labs Products & Services and France

ISBN: 978-989-758-352-0

Keyword(s): Network Optimization, Distributed Denial of Service (DDos) Attacks, Network Function Virtualizing (NFV), Mathematical Programming, Mixed Integer Linear Program (MILP), Bilevel Programming.

Related Ontology Subjects/Areas/Topics: Applications ; Linear Programming ; Methodologies and Technologies ; Network Optimization ; Operational Research ; OR in Telecommunications ; Pattern Recognition ; Software Engineering

Abstract: In this paper, we are interested in the problem of Virtual Network Function (NFV) placement to counter Distributed Denial of Service (DDoS) attacks. A DDoS attack is one of the most common and damaging types of cyberattacks. In Network Function Virtualization (NFV) technology network functions, more specifically security mechanisms, are implemented as software. Such approach significantly reduces the cost of the infrastructure and simplifies the deployment of new services. We propose two new models for this critical and complex problem. The first model is a mixed-integer linear program aiming at eliminating all DDos attacks before they reach their target. As its size grows exponentially with the network size, we propose a constraint generation algorithm to solve it. The numerical results obtained for different realistic network instances show the effectiveness of our approach. The second model is a bilevel programming problem that achieves a tradeoff between NFVs placement costs and s ecurity levels requirements. Our results show that this mechanisms overcomes DDos attacks by effectively filtering attacks while minimizing the total cost of deployed NFV. (More)

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.81.29.226

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Haddad-Vanier, S.; Gicquel, C.; Boukhatem, L.; Lazri, K. and Chaignon, P. (2019). Virtual Network Functions Placement for Defense Against Distributed Denial of Service Attacks.In Proceedings of the 8th International Conference on Operations Research and Enterprise Systems - Volume 1: ICORES, ISBN 978-989-758-352-0, pages 142-150. DOI: 10.5220/0007397601420150

@conference{icores19,
author={Sonia Haddad{-}Vanier. and Celine Gicquel. and Lila Boukhatem. and Kahina Lazri. and Paul Chaignon.},
title={Virtual Network Functions Placement for Defense Against Distributed Denial of Service Attacks},
booktitle={Proceedings of the 8th International Conference on Operations Research and Enterprise Systems - Volume 1: ICORES,},
year={2019},
pages={142-150},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007397601420150},
isbn={978-989-758-352-0},
}

TY - CONF

JO - Proceedings of the 8th International Conference on Operations Research and Enterprise Systems - Volume 1: ICORES,
TI - Virtual Network Functions Placement for Defense Against Distributed Denial of Service Attacks
SN - 978-989-758-352-0
AU - Haddad-Vanier, S.
AU - Gicquel, C.
AU - Boukhatem, L.
AU - Lazri, K.
AU - Chaignon, P.
PY - 2019
SP - 142
EP - 150
DO - 10.5220/0007397601420150

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.