An MTD-driven Hybrid Defense Method Against DDoS Based on Markov Game in Multi-controller SDN-enabled IoT Networks

Yuming Feng; Weizhe Zhang; Zijun Feng; Xiaoxiong Zhong; Fangming Liu

doi:10.1109/IWQoS61813.2024.10682921

An MTD-driven Hybrid Defense Method Against DDoS Based on Markov Game in Multi-controller SDN-enabled IoT Networks

Yuming Feng
, Weizhe Zhang^*
, Zijun Feng
, Xiaoxiong Zhong
, Fangming Liu

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

11 Scopus citations

Abstract

The widespread deployment of low-cost, vulnerable IoT devices allows attackers to exploit them to generate botnets and launch distributed denial-of-service (DDoS) attacks, which has become a serious security challenge for ensuring quality of service (QoS). For cost-effective defense against DDoS, we propose a novel hybrid defense method that includes proactive moving target defense (MTD) and passive security control to resist DDoS threats at different stages in IoT networks in this paper. We construct a multi-stage Markov game model to portray the game as a competition between the attacker and the defender for the control duration of the attack surface, and design an optimal defense strategy algorithm. In particular, we introduce a new parameter of action execution interval expectation in the game and add node importance evaluation in the reward quantification so that the optimal action execution interval of each defense technique can be output. We also consider the possibility that advanced attackers may launch DDoS on the SDN controller in the game. The experimental results demonstrate that our proposed method can defend against DDoS cost-effectively and ensure the QoS in IoT networks with acceptable overhead.

Original language	English
Title of host publication	2024 IEEE/ACM 32nd International Symposium on Quality of Service, IWQoS 2024
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9798350350128
DOIs	https://doi.org/10.1109/IWQoS61813.2024.10682921
State	Published - 2024
Externally published	Yes
Event	32nd IEEE/ACM International Symposium on Quality of Service, IWQoS 2024 - Guangzhou, China Duration: 19 Jun 2024 → 21 Jun 2024

Publication series

Name	IEEE International Workshop on Quality of Service, IWQoS
ISSN (Print)	1548-615X

Conference

Conference	32nd IEEE/ACM International Symposium on Quality of Service, IWQoS 2024
Country/Territory	China
City	Guangzhou
Period	19/06/24 → 21/06/24

Keywords

DDoS
Markov Game
Moving Target Defense
SDN-enabled IoT

Access to Document

10.1109/IWQoS61813.2024.10682921

Cite this

Feng, Y., Zhang, W., Feng, Z., Zhong, X., & Liu, F. (2024). An MTD-driven Hybrid Defense Method Against DDoS Based on Markov Game in Multi-controller SDN-enabled IoT Networks. In 2024 IEEE/ACM 32nd International Symposium on Quality of Service, IWQoS 2024 (IEEE International Workshop on Quality of Service, IWQoS). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/IWQoS61813.2024.10682921

@inproceedings{6d8ae6c89e654c48aba5e0189b8a621d,

title = "An MTD-driven Hybrid Defense Method Against DDoS Based on Markov Game in Multi-controller SDN-enabled IoT Networks",

abstract = "The widespread deployment of low-cost, vulnerable IoT devices allows attackers to exploit them to generate botnets and launch distributed denial-of-service (DDoS) attacks, which has become a serious security challenge for ensuring quality of service (QoS). For cost-effective defense against DDoS, we propose a novel hybrid defense method that includes proactive moving target defense (MTD) and passive security control to resist DDoS threats at different stages in IoT networks in this paper. We construct a multi-stage Markov game model to portray the game as a competition between the attacker and the defender for the control duration of the attack surface, and design an optimal defense strategy algorithm. In particular, we introduce a new parameter of action execution interval expectation in the game and add node importance evaluation in the reward quantification so that the optimal action execution interval of each defense technique can be output. We also consider the possibility that advanced attackers may launch DDoS on the SDN controller in the game. The experimental results demonstrate that our proposed method can defend against DDoS cost-effectively and ensure the QoS in IoT networks with acceptable overhead.",

keywords = "DDoS, Markov Game, Moving Target Defense, SDN-enabled IoT",

author = "Yuming Feng and Weizhe Zhang and Zijun Feng and Xiaoxiong Zhong and Fangming Liu",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 32nd IEEE/ACM International Symposium on Quality of Service, IWQoS 2024 ; Conference date: 19-06-2024 Through 21-06-2024",

year = "2024",

doi = "10.1109/IWQoS61813.2024.10682921",

language = "英语",

series = "IEEE International Workshop on Quality of Service, IWQoS",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "2024 IEEE/ACM 32nd International Symposium on Quality of Service, IWQoS 2024",

address = "美国",

}

Feng, Y, Zhang, W, Feng, Z, Zhong, X & Liu, F 2024, An MTD-driven Hybrid Defense Method Against DDoS Based on Markov Game in Multi-controller SDN-enabled IoT Networks. in 2024 IEEE/ACM 32nd International Symposium on Quality of Service, IWQoS 2024. IEEE International Workshop on Quality of Service, IWQoS, Institute of Electrical and Electronics Engineers Inc., 32nd IEEE/ACM International Symposium on Quality of Service, IWQoS 2024, Guangzhou, China, 19/06/24. https://doi.org/10.1109/IWQoS61813.2024.10682921

An MTD-driven Hybrid Defense Method Against DDoS Based on Markov Game in Multi-controller SDN-enabled IoT Networks. / Feng, Yuming; Zhang, Weizhe; Feng, Zijun et al.
2024 IEEE/ACM 32nd International Symposium on Quality of Service, IWQoS 2024. Institute of Electrical and Electronics Engineers Inc., 2024. (IEEE International Workshop on Quality of Service, IWQoS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - An MTD-driven Hybrid Defense Method Against DDoS Based on Markov Game in Multi-controller SDN-enabled IoT Networks

AU - Feng, Yuming

AU - Zhang, Weizhe

AU - Feng, Zijun

AU - Zhong, Xiaoxiong

AU - Liu, Fangming

PY - 2024

Y1 - 2024

N2 - The widespread deployment of low-cost, vulnerable IoT devices allows attackers to exploit them to generate botnets and launch distributed denial-of-service (DDoS) attacks, which has become a serious security challenge for ensuring quality of service (QoS). For cost-effective defense against DDoS, we propose a novel hybrid defense method that includes proactive moving target defense (MTD) and passive security control to resist DDoS threats at different stages in IoT networks in this paper. We construct a multi-stage Markov game model to portray the game as a competition between the attacker and the defender for the control duration of the attack surface, and design an optimal defense strategy algorithm. In particular, we introduce a new parameter of action execution interval expectation in the game and add node importance evaluation in the reward quantification so that the optimal action execution interval of each defense technique can be output. We also consider the possibility that advanced attackers may launch DDoS on the SDN controller in the game. The experimental results demonstrate that our proposed method can defend against DDoS cost-effectively and ensure the QoS in IoT networks with acceptable overhead.

AB - The widespread deployment of low-cost, vulnerable IoT devices allows attackers to exploit them to generate botnets and launch distributed denial-of-service (DDoS) attacks, which has become a serious security challenge for ensuring quality of service (QoS). For cost-effective defense against DDoS, we propose a novel hybrid defense method that includes proactive moving target defense (MTD) and passive security control to resist DDoS threats at different stages in IoT networks in this paper. We construct a multi-stage Markov game model to portray the game as a competition between the attacker and the defender for the control duration of the attack surface, and design an optimal defense strategy algorithm. In particular, we introduce a new parameter of action execution interval expectation in the game and add node importance evaluation in the reward quantification so that the optimal action execution interval of each defense technique can be output. We also consider the possibility that advanced attackers may launch DDoS on the SDN controller in the game. The experimental results demonstrate that our proposed method can defend against DDoS cost-effectively and ensure the QoS in IoT networks with acceptable overhead.

KW - DDoS

KW - Markov Game

KW - Moving Target Defense

KW - SDN-enabled IoT

UR - https://www.scopus.com/pages/publications/85206377509

U2 - 10.1109/IWQoS61813.2024.10682921

DO - 10.1109/IWQoS61813.2024.10682921

M3 - 会议稿件

AN - SCOPUS:85206377509

T3 - IEEE International Workshop on Quality of Service, IWQoS

BT - 2024 IEEE/ACM 32nd International Symposium on Quality of Service, IWQoS 2024

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 32nd IEEE/ACM International Symposium on Quality of Service, IWQoS 2024

Y2 - 19 June 2024 through 21 June 2024

ER -

Feng Y, Zhang W, Feng Z, Zhong X, Liu F. An MTD-driven Hybrid Defense Method Against DDoS Based on Markov Game in Multi-controller SDN-enabled IoT Networks. In 2024 IEEE/ACM 32nd International Symposium on Quality of Service, IWQoS 2024. Institute of Electrical and Electronics Engineers Inc. 2024. (IEEE International Workshop on Quality of Service, IWQoS). doi: 10.1109/IWQoS61813.2024.10682921

An MTD-driven Hybrid Defense Method Against DDoS Based on Markov Game in Multi-controller SDN-enabled IoT Networks

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this