Service interruption on Monday 11 July from 12:30 to 13:00: all the sites of the CCSD (HAL, EpiSciences, SciencesConf, AureHAL) will be inaccessible (network hardware connection).
Skip to Main content Skip to Navigation
Theses

Policy-driven autonomic cyberdefense using software-defined networking

Abstract : Cyber attacks cause significant loss not only to end-users, but also Internet Service Providers (ISP). Recently, customers of the ISP have been the number one target of the cyber attacks such as Distributed Denial of Service attacks (DDoS). These attacks are encouraged by the widespread availability of tools to launch the attacks. So, there is a crucial need to counter these attacks (DDoS, botnet attacks, etc.) by effective defense mechanisms. Researchers have devoted huge efforts on protecting the network from cyber attacks. Defense methodologies first contains a detection process, completed by mitigation. Lack of automation in the whole cycle of detection to mitigation increase the damage caused by cyber attacks. It requires manual configurations of devices by the administrator to mitigate the attacks which cause the network downtime. Therefore, it is necessary to close the security loop with an efficient mechanism to automate the mitigation process. In this thesis, we propose an autonomic mitigation framework to mitigate attacks that target the network resources. Our framework provides a collaborative mitigation strategy between the ISP and its customers. The implementation relies on Software-Defined Networking (SDN) technology to deploy the mitigation framework. The contribution of our framework can be summarized as follows: first the customers detect the attacks and share the threat information with its ISP to perform the on-demand mitigation. We further develop the system to improve the management aspect of the framework at the ISP side. This system performs the alert extraction, adaptation and device configurations. We develop a policy language to define the high level policy which is translated into OpenFlow rules. Finally, we show the applicability of the framework through simulation as well as testbed validation. We evaluate different QoS and QoE (quality of user experience) metrics in SDN networks. The application of the framework demonstrates its effectiveness in not only mitigating attacks for the victim, but also reducing the damage caused to traffic of other customers of the ISP
Complete list of metadata

Cited literature [119 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-01712306
Contributor : ABES STAR :  Contact
Submitted on : Monday, February 19, 2018 - 1:23:05 PM
Last modification on : Monday, August 24, 2020 - 4:16:08 PM
Long-term archiving on: : Monday, May 7, 2018 - 1:00:14 PM

File

thesis-Rishikesh-SAHAY.pdf
Version validated by the jury (STAR)

Identifiers

  • HAL Id : tel-01712306, version 1

Citation

Rishikesh Sahay. Policy-driven autonomic cyberdefense using software-defined networking. Cryptography and Security [cs.CR]. Institut National des Télécommunications, 2017. English. ⟨NNT : 2017TELE0022⟩. ⟨tel-01712306⟩

Share

Metrics

Record views

383

Files downloads

417