A Blockchain-Based Architecture for Collaborative DDoS Mitigation with Smart Contracts

@inproceedings{Rodrigues2017ABA,
  title={A Blockchain-Based Architecture for Collaborative DDoS Mitigation with Smart Contracts},
  author={Bruno Bastos Rodrigues and Thomas M. Bocek and Andri Lareida and David Hausheer and Sina Rafati and Burkhard Stiller},
  booktitle={AIMS},
  year={2017}
}
The rapid growth in the number of insecure portable and stationary devices and the exponential increase of traffic volume makes Distributed Denial-of-Service (DDoS) attacks a top security threat to services provisioning. Existing defense mechanisms lack resources and flexibility to cope with attacks by themselves, and by utilizing other’s companies resources, the burden of the mitigation can be shared. Emerging technologies such as blockchain and smart contracts allows for the sharing of attack… 
View via Publisher
link.springer.com
99 Citations
Highly Influential Citations
5
Background Citations
38
Methods Citations
21

99 Citations

Citation Type

Citation Type

Distributed Denial Of Service(DDoS) Mitigation in Software Defined Network using Blockchain
TLDR
This paper proposes an architecture where a smart contract is deployed in a private blockchain, which facilitates a collaborative DDoS mitigation architecture across multiple network domains, and provides ASes (Autonomous Systems) the possibility to deploy their own DPS(DDoS Prevention Service) and there is no need to transfer control of the network to the third party.
The role of Blockchain in DDoS attacks mitigation: techniques, open challenges and future directions
TLDR
This paper reviews and categorizes the existed state-of-the-art DDoS mitigation solutions based on blockchain technology and believes that this paper could serve as a starting point and reference resource for future researchers working on denial of service attacks detection and mitigation using blockchain technology.
Distributed Denial of Service (DDoS) Mitigation Using Blockchain - A Comprehensive Insight
TLDR
This survey discusses different approaches for DDoS mitigation using blockchain in varied domains to date, high-lighting all necessary details, strengths, challenges and limitations of different approaches.
Blockchain Signaling System (BloSS): Cooperative Signaling of Distributed Denial-of-Service Attacks
TLDR
The cooperative Blockchain Signaling System (BloSS) defines an effective and alternative solution for security management, especially cooperative defenses, by exploiting Blockchains and Software-Defined Networks for sharing attack information, an exchange of incentives, and tracking of reputation in a fully distributed and automated fashion.
Utilization of blockchain for mitigating the distributed denial of service attacks
TLDR
This paper presents a study of the blockchain‐based DDoS solutions, compares the existing blockchain-based techniques against DDoS attacks and analyses them, and facilitates the development of future research proposals in this emerging area of blockchain technology.
Collaborative Blockchain-Based Detection of Distributed Denial of Service Attacks Based on Internet of Things Botnets
TLDR
This paper proposes the use of lightweight agents installed at multiple internet of things (IoT) installations, in order to collaboratively detect distributed denial of service (DDoS) attacks conducted by theUse of IoT devices botnets.
Towards Utilizing Blockchain for Countering Distributed Denial-of-Service (DDoS)
TLDR
The authors compare existing blockchain-based defense mechanisms to counter DDoS attacks and analyze them, and discuss possible future research directions in this domain.
Mitigating distributed denial of service attack: Blockchain and software‐defined networking based approach, network model with future research challenges
TLDR
Three different network architectures for the protection of DDOS attack are proposed by enabling Blockchain technology with SDN concept, which helps in developing a mitigating architecture with their collaborative approach.
Collaborative Cyber Attack Defense in SDN Networks using Blockchain Technology
TLDR
A secure distributed model to facilitate cyber threat intelligence sharing among diverse participants is proposed, which uses blockchain technology to assure tamper-proof record-keeping and smart contracts to guarantee immutable logic.
Orchestrating DDoS mitigation via blockchain-based network provider collaborations
TLDR
This work investigates the establishment of trusted federations among adjacent and disjoint network domains, that is, autonomous systems (ASes) that collectively mitigate malicious traffic in an attack path based on Distributed Ledger Technologies.
...
1
2
3
4
5
...

References

SHOWING 1-10 OF 19 REFERENCES
Smart Contracts – Blockchains in the Wings
TLDR
In this paper, various different set of functions, applications, and stakeholders are involved in this smart contract arena and are highlighted and put into interrelated technical, economic, and legal perspectives.
Collaborative DDoS defense using flow-based security event information
TLDR
This paper presents a communication process that supports the dissemination of threat information based on FLEX in context of ISPs and shows that this communication process helps organizations to speed up their mitigation and response capabilities without the need to modify the current network infrastructure, and hence make it viable to use for network operators.
Towards Autonomic DDoS Mitigation using Software Defined Networking
TLDR
A distributed collaborative framework that allows the customers to request DDoS mitigation service from ISPs and demonstrates that SDN has promising potential to enable autonomic mitigation of DDoS attacks, as well as other large-scale attacks.
CoFence: A collaborative DDoS defence using network function virtualization
TLDR
CoFence is proposed — a DDoS defense mechanism which facilitates a collaboration framework among NFV-based peer domain networks which allows domain networks to help each others handle large volumes of DDoS attacks through resource sharing.
Measuring the Adoption of DDoS Protection Services
TLDR
The results show that DPS adoption has grown by 1.24x in the measurement period, a prominent trend compared to the overall expansion of the namespace, and reveals that adoption is often lead by big players such as large Web hosters, which activate or deactivate DDoS protection for millions of domain names at once.
SDN-Guard: DoS Attacks Mitigation in SDN Networks
  • Lobna Dridi, M. Zhani
  • Computer Science
    2016 5th IEEE International Conference on Cloud Networking (Cloudnet)
  • 2016
TLDR
The proposed SDN-Guard is a novel scheme able to efficiently protect SDN networks against DoS attacks by dynamically rerouting potential malicious traffic, adjusting flow timeouts and aggregating flow rules.
Cooperative Defence Against DDoS Attacks
TLDR
This paper proposes a distributed approach to defend against distributed denial of service attacks by coordinating across the Internet, and unlike traditional IDS, detects and stop DDoS attacks within the intermediate network.
Bitcoin: A Peer-to-Peer Electronic Cash System
TLDR
This work proposes a solution to the double-spending problem using a peer-to-peer network, where the network timestamps transactions by hashing them into an ongoing chain of hash-based proof-of-work, forming a record that cannot be changed without redoing the proof- of-work.
Global Detection of Flooding-Based DDoS Attacks Using a Cooperative Overlay Network
TLDR
This paper proposes a distributed defense infrastructure to detect DDoS attacks globally using a cooperative overlay network and a gossip-based information exchange protocol and results show that the proposed solution can detect attacks with a detection rate as high as 0.99 with false alarms below 0.01.
A feasible method to combat against DDoS attack in SDN network
TLDR
This paper introduces a feasible method to protect the network against Distributed Denial of Service attacks more effectively by injecting spoofed request packets continuously.
...
1
2
...