Portal de Programas de Pós-Graduação (UFRN)

SIGAA - Sistema Integrado de Gestão de Atividades Acadêmicas

PPGEEC/CT PROGRAMA DE PÓS-GRADUAÇÃO EM ENGENHARIA ELÉTRICA E DE COMPUTAÇÃO CENTRO DE TECNOLOGIA Phone: (84) 3342-2394/402 E-mail: coordenacao@ppgeec.ufrn.br https://posgraduacao.ufrn.br/ppgeec

Banca de QUALIFICAÇÃO: FRANCISCO SALES DE LIMA FILHO

Uma banca de QUALIFICAÇÃO de DOUTORADO foi cadastrada pelo programa.
DISCENTE : FRANCISCO SALES DE LIMA FILHO
DATA : 11/07/2018
HORA: 09:00
LOCAL: Auditório do PPgEEC
TÍTULO:

Smart-Defender: A comprehensive protection mechanism against DDoS attacks

PALAVRAS-CHAVES:

Computer Network Security, Denial of Service Attacks, Distributed Denial of Service Attacks, Random Forest.

PÁGINAS: 60
GRANDE ÁREA: Engenharias
ÁREA: Engenharia Elétrica
RESUMO:

Distributed Denial of Service attacks are a major concern of security professionals and enterprises. Developing efficient defense mechanisms against DDoS attacks is a goal desired by the research community in the area of intrusion detection and prevention. However, the development of such a mechanism requires a comprehensive understanding of the problem and the techniques that have been used so far in preventing, detecting and responding to various DDoS flood attacks. In this work, we propose the Smart-Defender system, a distributed, non-invasive system (compatible with the current network scenario) and with a collaborative approach, to be executed at all levels of providers, aiming to overcome the DoS / DDoS attacks near its origins. Such a system is comprised of Smart-Detection, Smart-protect and Smart-Monitoring sub-systems. The detection subsystem uses the Random Forest algorithm to perform real-time detection using a small sample of network traffic. Attack notifications are shared with other system instances asynchronously throughout the service provider hierarchy. Containment measures are generated by the protection sub-system and applied by the network protection devices themselves as routers and firewalls. The sub-system monitors attack activities and notifies security teams. The results obtained with the Smart-Detection indicate efficiency in the method employed. High accuracy rates were obtained in the traffic classification, even using low sampling rates. The system was able to detect both high-volume DoS attacks of network and transport layer data, and also detected slow and stealth application-layer attacks with low data volume.

MEMBROS DA BANCA:
Presidente - 1543191 - LUIZ FELIPE DE QUEIROZ SILVEIRA
Interno - 2885532 - IVANOVITCH MEDEIROS DANTAS DA SILVA
Externo ao Programa - 1279464 - AGOSTINHO DE MEDEIROS BRITO JUNIOR
Externo ao Programa - 347052 - PAULO SERGIO DA MOTTA PIRES

Notícia cadastrada em: 03/07/2018 16:57