Find in Library
Search millions of books, articles, and more
Indexed Open Access Databases
A Method for DDoS Attacks Prevention Using SDN and NFV
oleh: Mohammad Javad Shayegan, Amirreza Damghanian
Format: | Article |
---|---|
Diterbitkan: | IEEE 2024-01-01 |
Deskripsi
Distributed Denial-of-Service (DDoS) attacks are among the most common security attacks in enterprise networks. DDoS attacks are designed to disrupt networks by sending many false requests. With the introduction of Network Functions Virtualization (NFV), a new paradigm has been created for network management and design. The NFV architecture allows network functions to be defined dquite dynamically. A dynamic definition of network functions will provide the most effective support for organizational environments. This research aims to prevent DDoS attacks using NFV and Software-Defined Networking(SDN) platforms. Moving Target Defense (MTD) is used in this research to alter the routing and location of particular detection packets in the network. This MTD technique effectively hinders attackers from targeting real network topologies. A significant innovation introduced in this research is the selection of MTD types based on the processing resources of overlay networks. The results indicate that the proposed method will save these resources and reduce the time required to check network packets.