Author
Listed:
- Bruno L. Dalmazo
- Jonatas A. Marques
- Lucas R. Costa
- Michel S. Bonfim
- Ranyelson N. Carvalho
- Anderson S. da Silva
- Stenio Fernandes
- Jacir L. Bordim
- Eduardo Alchieri
- Alberto Schaeffer‐Filho
- Luciano Paschoal Gaspary
- Weverton Cordeiro
Abstract
Design flaws and vulnerabilities inherent to network protocols, devices, and services make Distributed Denial of Service (DDoS) a persisting threat in the cyberspace, despite decades of research efforts in the area. The historical vertical integration of traditional IP networks limited the solution space, forcing researchers to tweak network protocols while maintaining global compatibility and proper service to legitimate flows. The advent of Software‐Defined Networking (SDN) and advances in Programmable Data Planes (PDP) changed the state of affairs and brought novel possibilities to deal with such attacks. In summary, the ability of bringing together network intelligence to a control plane, and offloading flow processing tasks to the forwarding plane, opened up interesting opportunities for network security researchers unlike ever. In this article, we dive into recent research that relies on SDN and PDP to detect, mitigate, and prevent DDoS attacks. Our literature review takes into account the SDN layered view as defined in RFC7426 and focuses on the data, control, and application planes. We follow a systematic methodology to capture related articles and organize them into a taxonomy of DDoS defense mechanisms focusing on three facets: activity level, deployment location, and cooperation degree. From the analysis of existing work, we also highlight key research gaps that may foster future research in the field.
Suggested Citation
Bruno L. Dalmazo & Jonatas A. Marques & Lucas R. Costa & Michel S. Bonfim & Ranyelson N. Carvalho & Anderson S. da Silva & Stenio Fernandes & Jacir L. Bordim & Eduardo Alchieri & Alberto Schaeffer‐Fil, 2021.
"A systematic review on distributed denial of service attack defense mechanisms in programmable networks,"
International Journal of Network Management, John Wiley & Sons, vol. 31(6), November.
Handle:
RePEc:wly:intnem:v:31:y:2021:i:6:n:e2163
DOI: 10.1002/nem.2163
Download full text from publisher
Corrections
All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:wly:intnem:v:31:y:2021:i:6:n:e2163. See general information about how to correct material in RePEc.
If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.
We have no bibliographic references for this item. You can help adding them by using this form .
If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.
For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Wiley Content Delivery (email available below). General contact details of provider: https://doi.org/10.1002/(ISSN)1099-1190 .
Please note that corrections may take a couple of weeks to filter through
the various RePEc services.
Printed from https://ideas.repec.org/a/wly/intnem/v31y2021i6ne2163.html
