Predicting the Evolution of Distributed Denial of Service Attacks on Carrier Networks (2019)

By Kyle Haefner, Cable Television Laboratories Inc.

Distributed Denial of Service (DDoS) attacks are among the preeminent threats facing the Internet today.

Predicting where the next DDoS attack will emanate at an endpoint/subscriber level is a long-sought goal of the cyber-security community.

This work evaluates attack data from five contributing members of the DDoS Information Sharing (DIS)project with the intent to provide an ISP/MSO the tools to predict at subscriber/endpoint granularity if they will start participating in a DDoS attack. The DIS data is combined with data from the Internet search engine, Shodan, to build a detailed dataset of recent/active attackers. Statistical and machine learning analysis of this composite dataset demonstrates that by evaluating network endpoints with certain features, it can be predicted that these endpoints will participate in a specific type of DDoS attack with accuracies between 91-98%.

Finally, each feature of the attacking network endpoint that was used in the machine learning model is ranked by its predictive significance, lending insight into how ISP/MSOs might preemptively detect and mitigate an endpoint even before it starts participating in a DDoS attack.

By clicking the "Download Paper" button, you are agreeing to our terms and conditions.

Similar Papers

The Evolution of Cable Network Security
By Matt Tooley, NCTA, Matt Carothers, Cox Communications, Michael Glenn, CableLabs, Michael O’Reirdan, Comcast, Chris Roosenraad, Time-Warner Cable, and Bill Sweeney, Comcast
Detecting and Mitigating Distributed Denial of Service Attack with Transparent Security
By Randy Levensalor, CableLabs; Chris Sibley, Cox Communications
Smart Gateways: Active A.I. in Subscriber Networks
By Kyle Haefner, CableLabs
Optimal Availability & Security For Voice Over Cable Networks
By Chun K. Chan, Andrew R. McGee, Martin J. Glapa, and Uma Chandrashekhar, Bell Laboratories, Lucent Technologies
The Next Evolution in Cable: Converged, Distributed and Virtualized Access Network
By Jorge D. Salinger, VP, Access Architecture, Comcast Cable
Local Area Networks And Cable Television
By Robert V .C. Dickinson, AM Cable TV Industries, Inc.
Securing DOCSIS Cable Networks
By Annie Phan, Cisco Systems
What's Smart About Smart Power? Modernizing the Power Grid and HFC Networks: Power Outage Notifications and Advanced Sensing
By Dr. Robert F. Cruickshank, III, Cable Television Laboratories, Inc.
Cable And The Consumer Electronics Industry
By Claude T. Baggett, Cable Television Laboratories, Inc.
Star-Switched Networks In Cable Television
By John Simons, Times Fiber Communications, Inc.
More Results >>