Framework for Infrastructure Attack Modeling in Hybrid Networks

Framework for Infrastructure Attack Modeling in Hybrid Networks

Konstantin Borisenko (Saint Petersburg Electrotechnical University, Saint Petersburg, Russia), Ivan Kholod (Saint Petersburg Electrotechnical University, Saint Petersburg, Russia) and Andrey Shorov (Saint Petersburg Electrotechnical University, Saint Petersburg, Russia)
DOI: 10.4018/IJMCMC.2014100106
OnDemand PDF Download:
$30.00
List Price: $37.50

Abstract

The paper considers a framework for modeling infrastructure attacks and protection mechanisms in hybrid networks. The developed framework saves time conducting tests and improves the accuracy of the experiments by connection the simulation system to real network nodes. The paper shows formal description of the modeling system components. Modeling system architecture and implementation are shown. The authors also describe modeling system verification. In addition, they provide the experiments devoted to DDoS attacks and operation of the protection techniques.
Article Preview

In the last few years there have been a great number of works in the area of the modeling network protection against infrastructure attacks.

In (Siaterlis et al., 2013) the Emulab system is suggested for experimental research aimed at studying network threats and computer network security. This software allows us to design virtual networks with various topologies and simulate client behavior. Thus, it is possible to set attack scenarios and implement protection algorithms.

The DETER testbed (Mirkovic et al., 2007) is intended for simulating various network threats and testing protection techniques against them. When modeling DoS and DDoS attacks, we can point out three main components: network topology, legitimate and malicious traffic. Such a system allows fast network construction with a large number of nodes, simulation of different situations connected with attack performance, and study of the efficiency of protection mechanisms against these attacks.

The paper (Konovalov et al., 2013) deals with the development of a simulation system for DDoS attacks. This system allows us to simulate a network with different behavior of clients inside it. The authors described the system and also provided the results of testing the known methods of DDoS attack protection. Furthermore, their own protection methods were developed and tested. Unlike the system described we have developed a system with the possible connection of real nodes to a virtual network for improving the accuracy of the experiments conducted.

Complete Article List

Search this Journal:
Reset
Open Access Articles: Forthcoming
Volume 8: 4 Issues (2017)
Volume 7: 4 Issues (2016)
Volume 6: 4 Issues (2014)
Volume 5: 4 Issues (2013)
Volume 4: 4 Issues (2012)
Volume 3: 4 Issues (2011)
Volume 2: 4 Issues (2010)
Volume 1: 4 Issues (2009)
View Complete Journal Contents Listing