|
|
||
|
Tutorials |
||
|
|
¡¡ |
|
|
Title |
Defence against Distributed Denial-of-Service (DDoS) Attacks |
|
|
|
for Internet-based Services |
|
|
|
|
|
|
Presenters |
|
|
|
|
Professor Wanlei Zhou |
|
|
|
¡¡ |
Head of School of Information Technology |
|
|
¡¡ |
Deakin University, Melbourne, Australia |
|
|
¡¡ |
Email: wanlei@deakin.edu.au |
|
|
Mr Yang Xiang | |
|
|
¡¡ |
PhD Candidate,School of Information Technology |
|
|
¡¡ |
Deakin University, Melbourne, Australia |
|
Outline |
¡¡ | |
|
|
||
|
Part 1: DDoS Attacks and its Threatening to Internet -based Services |
||
|
1. Overview ¨C What¡¯s DDoS attacks |
||
|
2. Evolution and Classification of DDoS Attacks |
||
|
2.1 Launching a DDoS Attack |
||
|
2.2 Evolution of DDoS Attacks |
||
|
2.3 Classification of DDoS Attacks |
||
|
3. DDoS Threatening to Internet -based Services |
||
|
3.1 Introduction of Internet -based Services |
||
|
3.2 Security Problems in Internet -based Services |
||
|
3.3 Vulnerability to DDoS Attacks in Internet -based Services |
||
|
|
||
|
Part 2: Defence against DDoS Attacks for Internet -based Services |
||
|
4. Overview of Current Defence Mechanisms |
||
|
5. Passive Defence against DDoS Attacks |
||
|
5.1 Detecting Mechanisms |
||
|
5.1.1 Traffic Volume Monitoring |
||
|
5.1.2 Source IP Address Monitoring |
||
|
5.1.3 Monitoring Other Features |
||
|
5.2 Reacting Mechanisms |
||
|
5.2.1 Filtering |
||
|
5.2.2 Congestion Control |
||
|
5.2.3 Passive Traceback |
||
|
5.2.4 Replication |
||
|
5.3 Limitation of Passive Defence |
||
|
6. Active Defence against DDoS Attacks |
||
|
6.1 Objectives of Active Defence |
||
|
6.2 Current Techniques Applicable in Active Defence |
||
|
6.2.1 Source End Defence |
||
|
6.2.2 Active Traceback |
||
|
6.2.3 Protocol-based Defence |
||
|
7. Discussion |
||
|
7.1 Comparison between Passive and Active Defence |
||
|
7.2 Major challenges of DDoS Defence |
||
|
8. Conclusions |
||
|
|
||
|
|
The goal of this tutorial is to introduce and discuss the DDoS problems in Internet-based services and its countermeasures. This tutorial is divided into two parts. The first part gives an overview of DDoS attacks and its evolution and classification. Then we discuss the security problems caused by DDoS attacks that threaten Internet-based services. The second part outlines current defence mechanisms against DDoS attacks. In particular, Part 1 first introduces the overview of DDoS attacks, examples of how a DDoS attack is launched, evolution of DDoS tools, and the classification of DDoS attacks. Then it discusses the security issues on Internet-based services and its vulnerability to DDoS attacks. Part 2 of the tutorial addresses two main streams of current defence mechanisms used to combat DDoS attacks. It first introduces the passive defence mechanisms that including detecting and reacting mechanisms. Then the active defence approaches are introduced. After that, three major active defence methods (source end defence, active traceback, and protocol-based defence) are discussed. Finally, the comparisons between passive and active defence are presented, and some major challenges of DDoS defence are discussed. The audience of this tutorial includes researchers, practitioners, and technical officers from academic, business and government. No specific knowledge is required. Anyone with a basic knowledge of computing and an interest in the Internet and Internet based services will be able to understand the materials presented in the tutorial. The length of the tutorial will be three hours |
|
|
|
¡¡ |
|
| A Short Bio of Professor Wanlei Zhou | ||
|
|
Professor Wanlei Zhou received the B.Eng and M.Eng degrees from Harbin Institute of Technology, Harbin, China in 1982 and 1984, respectively, and the PhD degree from The Australian National University, Canberra, Australia, in 1991. He is currently the Chair Professor of IT and the Head in School of Information Technology, Deakin University, Melbourne, Australia. Before joining Deakin University, Professor Zhou has been a programmer in Apollo/HP at Massachusetts, USA; the Chief Software Engineer in HighTech Computers at Sydney, Australia; a Lecturer in National University of Singapore, Singapore; and a Lecturer in Monash University, Melbourne, Australia. His research interests include theory and practical issues of building distributed systems, Internet computing and security, distributed and heterogeneous databases, mobile computing, performance evaluation, and fault-tolerant computing. Professor Zhou is a member of the IEEE , IEEE Computer Society, and the ACM. Professor Zhou has published more than 100 papers in refereed international journals and refereed international conferences proceedings. Professor Zhou was the Program Committee Co-Chair of the 2000 IEEE International Conference on Algorithms and Architectures for Parallel Processing (ICA3PP 2000), the Program Committee Co-Chair of ICA3PP 2002, and the Program Committee Co-Chair of The Second International Conference on Web-Based Learning (ICWL2003). Since 1997 Professor Zhou has been involved in more than 40 international conferences as PC Chair, Session Chair, Publication Chair, and PC member. |
|
| ¡¡ | ||
|
|
Mr. Yang Xiang is currently a PhD candidate at School of Information Technology, Deakin University, Melbourne, Australia. Yang received the B.Eng degree from Dalian University of Technology in 1997 and M.Sc degree from the Chinese Academy of Sciences in 2000. Before he came to Deakin University in 2003, he was a software engineer in Mustek Opto-Electronics Inc., Taiwan and West Lake Software, China. His research interests include network security, web services and wireless system. Mr. Xiang published more than 10 refereed journal and conference papers. He is an associate member of Australia Computer Society. |
|
|
|
¡¡ |
|
|
|
|
|