Enlighten Publications

In this section

High-performance, Platform-Independent DDoS Detection for IoT Ecosystems

Santoyo-Gonzalez, A., Cervello-Pastor, C. and Pezaros, D. P. (2020) High-performance, Platform-Independent DDoS Detection for IoT Ecosystems. In: 44th IEEE Conference on Local Computer Networks (LCN 2019), Osnabrück, Germany, 14-17 Oct 2019, pp. 69-75. ISBN 9781728110288 (doi: 10.1109/LCN44214.2019.8990862)

Preview

Text
189892.pdf - Accepted Version
634kB

Abstract

Most Distributed Denial of Service (DDoS) detection and mitigation strategies for Internet of Things (IoT) are based on a remote cloud server or purpose-built middlebox executing complex intrusion detection methods, that impose stringent scalability and performance requirements on the IoT due to the vast amounts of traffic and devices to be handled. In this paper, we present an edge-based detection scheme using BPFabric, a high-speed, programmable data-plane switch architecture, and lightweight network functions to execute upstream anomaly detection. The proposed detection scheme ensures fast detection of DDoS attacks originated from IoT devices, while guaranteeing minimum resource usage and processing overhead. Our solution was compared against two widespread coarse-grained detection techniques, showing detection delays under 5ms, an overall accuracy of 93 − 95% and a bandwidth overhead of less than 1%.

Item Type:	Conference Proceedings
Additional Information:	This work has been supported by the Ministerio de Econom´ıa y Competitividad of the Spanish Government under the project TEC2016-76795- C6-1-R and AEI/FEDER, UE. Additionally it has been supported in part by the UK Engineering and Physical Sciences Research Council (EPSRC) projects EP/R511936/1, EP/N033957/1, and EP/P004024/1; by BT (Voucher No. 17000117); by the Huawei Innovation Research Program (Grant No. 300952); and by the European Cooperation in Science and Technology (COST) Action CA 15127: RECODIS – Resilient communication and services.
Status:	Published
Refereed:	Yes
Glasgow Author(s) Enlighten ID:	Pezaros, Professor Dimitrios
Authors:	Santoyo-Gonzalez, A., Cervello-Pastor, C., and Pezaros, D. P.
College/School:	College of Science and Engineering > School of Computing Science
ISBN:	9781728110288
Copyright Holders:	Copyright © 2019 IEEE
Publisher Policy:	Reproduced in accordance with the copyright policy of the publisher

University Staff: Request a correction | Enlighten Editors: Update this record

Funder and Project Information

Project Code	Award No	Project Name	Principal Investigator	Funder's Name	Funder Ref	Lead Dept
70913	1	Network Measurement as a Service (MaaS)	Dimitrios Pezaros	Engineering and Physical Sciences Research Council (EPSRC)	EP/N033957/1	COM - COMPUTING SCIENCE
72216	1	FRuIT: The Federated RaspberryPi Micro-Infrastructure Testbed	Jeremy Singer	Engineering and Physical Sciences Research Council (EPSRC)	EP/P004024/1	COM - COMPUTING SCIENCE
300952		HIRP 2017 - Distributed Intelligence for Network Control	Dimitrios Pezaros	Huawei Technologies (CN) (HUAWE-CN)	N/A	Computing Science

Deposit and Record Details

ID Code:	189892
Depositing User:	Miss Leigh Bunton
Datestamp:	08 Jul 2019 15:39
Last Modified:	07 Sep 2020 10:30
Date of acceptance:	8 July 2019
Date of first online publication:	13 February 2020
Date Deposited:	8 July 2019
Data Availability Statement:	No