loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Sonia Haddad-Vanier 1 ; Celine Gicquel 2 ; Lila Boukhatem 2 ; Kahina Lazri 3 and Paul Chaignon 3

Affiliations: 1 SAMM Université Paris I Panthéon Sorbonne and France ; 2 LRI, CNRS - Université Paris Saclay, Université Paris-Sud and France ; 3 Orange Labs Products & Services and France

Keyword(s): Network Optimization, Distributed Denial of Service (DDos) Attacks, Network Function Virtualizing (NFV), Mathematical Programming, Mixed Integer Linear Program (MILP), Bilevel Programming.

Related Ontology Subjects/Areas/Topics: Applications ; Linear Programming ; Methodologies and Technologies ; Network Optimization ; Operational Research ; OR in Telecommunications ; Pattern Recognition ; Software Engineering

Abstract: In this paper, we are interested in the problem of Virtual Network Function (NFV) placement to counter Distributed Denial of Service (DDoS) attacks. A DDoS attack is one of the most common and damaging types of cyberattacks. In Network Function Virtualization (NFV) technology network functions, more specifically security mechanisms, are implemented as software. Such approach significantly reduces the cost of the infrastructure and simplifies the deployment of new services. We propose two new models for this critical and complex problem. The first model is a mixed-integer linear program aiming at eliminating all DDos attacks before they reach their target. As its size grows exponentially with the network size, we propose a constraint generation algorithm to solve it. The numerical results obtained for different realistic network instances show the effectiveness of our approach. The second model is a bilevel programming problem that achieves a tradeoff between NFVs placement costs and security levels requirements. Our results show that this mechanisms overcomes DDos attacks by effectively filtering attacks while minimizing the total cost of deployed NFV. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 35.171.159.141

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Haddad-Vanier, S.; Gicquel, C.; Boukhatem, L.; Lazri, K. and Chaignon, P. (2019). Virtual Network Functions Placement for Defense Against Distributed Denial of Service Attacks. In Proceedings of the 8th International Conference on Operations Research and Enterprise Systems - ICORES; ISBN 978-989-758-352-0; ISSN 2184-4372, SciTePress, pages 142-150. DOI: 10.5220/0007397601420150

@conference{icores19,
author={Sonia Haddad{-}Vanier. and Celine Gicquel. and Lila Boukhatem. and Kahina Lazri. and Paul Chaignon.},
title={Virtual Network Functions Placement for Defense Against Distributed Denial of Service Attacks},
booktitle={Proceedings of the 8th International Conference on Operations Research and Enterprise Systems - ICORES},
year={2019},
pages={142-150},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007397601420150},
isbn={978-989-758-352-0},
issn={2184-4372},
}

TY - CONF

JO - Proceedings of the 8th International Conference on Operations Research and Enterprise Systems - ICORES
TI - Virtual Network Functions Placement for Defense Against Distributed Denial of Service Attacks
SN - 978-989-758-352-0
IS - 2184-4372
AU - Haddad-Vanier, S.
AU - Gicquel, C.
AU - Boukhatem, L.
AU - Lazri, K.
AU - Chaignon, P.
PY - 2019
SP - 142
EP - 150
DO - 10.5220/0007397601420150
PB - SciTePress