{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,2]],"date-time":"2026-01-02T07:37:37Z","timestamp":1767339457349,"version":"3.37.3"},"publisher-location":"Cham","reference-count":45,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030312381"},{"type":"electronic","value":"9783030312398"}],"license":[{"start":{"date-parts":[[2019,9,25]],"date-time":"2019-09-25T00:00:00Z","timestamp":1569369600000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-3-030-31239-8_14","type":"book-chapter","created":{"date-parts":[[2019,9,24]],"date-time":"2019-09-24T06:03:26Z","timestamp":1569305006000},"page":"169-184","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Analyzing the Vulnerabilities Introduced by DDoS Mitigation Techniques for Software-Defined Networks"],"prefix":"10.1007","author":[{"given":"Rajendra V.","family":"Boppana","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rajasekhar","family":"Chaganti","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Vasudha","family":"Vedula","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,9,25]]},"reference":[{"issue":"2","key":"14_CR1","doi-asserted-by":"publisher","first-page":"69","DOI":"10.1145\/1355734.1355746","volume":"38","author":"N McKeown","year":"2008","unstructured":"McKeown, N., Anderson, T., Balakrishnan, H., Parulkar, G., Peterson, L., Rexford, J., Shenker, S., Turner, J.: OpenFlow: enabling innovation in campus networks. SIGCOMM Comput. Commun. Rev. 38(2), 69\u201374 (2008). \n                    http:\/\/doi.acm.org\/10.1145\/1355734.1355746","journal-title":"SIGCOMM Comput. Commun. Rev."},{"issue":"1","key":"14_CR2","doi-asserted-by":"publisher","first-page":"14","DOI":"10.1109\/JPROC.2014.2371999","volume":"103","author":"D Kreutz","year":"2015","unstructured":"Kreutz, D., Ramos, F.M., Verissimo, P., Rothenberg, C.E., Azodolmolky, S., Uhlig, S.: Software-defined networking: a comprehensive survey. Proc. IEEE 103(1), 14\u201376 (2015)","journal-title":"Proc. IEEE"},{"issue":"4","key":"14_CR3","doi-asserted-by":"publisher","first-page":"12","DOI":"10.1109\/MC.2000.839316","volume":"33","author":"L Garber","year":"2000","unstructured":"Garber, L.: Denial-of-service attacks rip the internet. Computer 33(4), 12\u201317 (2000)","journal-title":"Computer"},{"issue":"7","key":"14_CR4","doi-asserted-by":"publisher","first-page":"80","DOI":"10.1109\/MC.2017.201","volume":"50","author":"C Kolias","year":"2017","unstructured":"Kolias, C., Kambourakis, G., Stavrou, A., Voas, J.: DDoS in the IoT: mirai and other botnets. Computer 50(7), 80\u201384 (2017)","journal-title":"Computer"},{"issue":"4","key":"14_CR5","doi-asserted-by":"publisher","first-page":"2046","DOI":"10.1109\/SURV.2013.031413.00127","volume":"15","author":"ST Zargar","year":"2013","unstructured":"Zargar, S.T., Joshi, J., Tipper, D.: A survey of defense mechanisms against distributed denial of service (DDoS) flooding attacks. IEEE Commun. Surv. Tutor. 15(4), 2046\u20132069 (2013)","journal-title":"IEEE Commun. Surv. Tutor."},{"issue":"10","key":"14_CR6","doi-asserted-by":"publisher","first-page":"42","DOI":"10.1109\/MCOM.2002.1039856","volume":"40","author":"RK Chang","year":"2002","unstructured":"Chang, R.K.: Defending against flooding-based distributed denial-of-service attacks: a tutorial. IEEE Commun. Mag. 40(10), 42\u201351 (2002)","journal-title":"IEEE Commun. Mag."},{"issue":"2","key":"14_CR7","doi-asserted-by":"publisher","first-page":"39","DOI":"10.1145\/997150.997156","volume":"34","author":"J Mirkovic","year":"2004","unstructured":"Mirkovic, J., Reiher, P.: A taxonomy of DDoS attack and DDoS defense mechanisms. ACM SIGCOMM Comput. Commun. Rev. 34(2), 39\u201353 (2004)","journal-title":"ACM SIGCOMM Comput. Commun. Rev."},{"key":"14_CR8","unstructured":"Blankenship, J.: DDoS mitigation solutions, Q4 2017. In: The Forrester Wave\n                    \n                      \n                    \n                    $$^{TM}$$\n                  , December 2017"},{"issue":"4","key":"14_CR9","doi-asserted-by":"publisher","first-page":"36","DOI":"10.1109\/MCOM.2015.7081073","volume":"53","author":"A Akhunzada","year":"2015","unstructured":"Akhunzada, A., Ahmed, E., Gani, A., Khan, M.K., Imran, M., Guizani, S.: Securing software defined networks: taxonomy, requirements, and open issues. IEEE Commun. Mag. 53(4), 36\u201344 (2015)","journal-title":"IEEE Commun. Mag."},{"key":"14_CR10","doi-asserted-by":"publisher","first-page":"79","DOI":"10.1016\/j.cose.2015.05.006","volume":"53","author":"I Alsmadi","year":"2015","unstructured":"Alsmadi, I., Xu, D.: Security of software defined networks: a survey. Comput. Secur. 53, 79\u2013108 (2015)","journal-title":"Comput. Secur."},{"issue":"6","key":"14_CR11","doi-asserted-by":"publisher","first-page":"28","DOI":"10.1109\/MNET.2016.1600109NM","volume":"30","author":"P Zhang","year":"2016","unstructured":"Zhang, P., Wang, H., Hu, C., Lin, C.: On denial of service attacks in software defined networks. IEEE Netw. 30(6), 28\u201333 (2016)","journal-title":"IEEE Netw."},{"issue":"1","key":"14_CR12","doi-asserted-by":"publisher","first-page":"602","DOI":"10.1109\/COMST.2015.2487361","volume":"18","author":"Q Yan","year":"2016","unstructured":"Yan, Q., Yu, F.R., Gong, Q., Li, J.: Software-defined networking (SDN) and distributed denial of service (DDoS) attacks in cloud computing environments: a survey, some research issues, and challenges. IEEE Commun. Surv. Tutor. 18(1), 602\u2013622 (2016)","journal-title":"IEEE Commun. Surv. Tutor."},{"key":"14_CR13","doi-asserted-by":"crossref","unstructured":"Shin, S., Yegneswaran, V., Porras, P., Gu, G.: AVANT-GUARD: scalable and vigilant switch flow management in software-defined networks. In: Proceedings of the ACM Conference on Computer & Communications Security, pp. 413\u2013424 (2013)","DOI":"10.1145\/2508859.2516684"},{"key":"14_CR14","unstructured":"Postel, J.: Transmission control protocol. STD\u00a07, RFC Editor, September 1981. \n                    http:\/\/www.rfc-editor.org\/rfc\/rfc793.txt"},{"issue":"2","key":"14_CR15","doi-asserted-by":"publisher","first-page":"1206","DOI":"10.1109\/TNET.2016.2626287","volume":"25","author":"M Ambrosin","year":"2017","unstructured":"Ambrosin, M., Conti, M., Gaspari, F.D., Poovendran, R.: Lineswitch: tackling control plane saturation attacks in software-defined networking. IEEE\/ACM Trans. Netw. 25(2), 1206\u20131219 (2017)","journal-title":"IEEE\/ACM Trans. Netw."},{"key":"14_CR16","doi-asserted-by":"crossref","unstructured":"Chen, K., Junuthula, A.R., Siddhrau, I.K., Xu, Y., Chao, H.J.: SDNShield: towards more comprehensive defense against DDoS attacks on SDN control plane. In: IEEE Conference on Communications and Network Security (CNS), pp. 28\u201336. IEEE (2016)","DOI":"10.1109\/CNS.2016.7860467"},{"issue":"2","key":"14_CR17","doi-asserted-by":"publisher","first-page":"487","DOI":"10.1109\/TNSM.2017.2701549","volume":"14","author":"R Mohammadi","year":"2017","unstructured":"Mohammadi, R., Javidan, R., Conti, M.: Slicots: an SDN-based lightweight countermeasure for TCP SYN flooding attacks. IEEE Trans. Netw. Serv. Manag. 14(2), 487\u2013497 (2017)","journal-title":"IEEE Trans. Netw. Serv. Manag."},{"key":"14_CR18","doi-asserted-by":"publisher","first-page":"89","DOI":"10.1016\/j.comnet.2015.08.038","volume":"92","author":"S Fichera","year":"2015","unstructured":"Fichera, S., Galluccio, L., Grancagnolo, S.C., Morabito, G., Palazzo, S.: OPERETTA: an openflow-based remedy to mitigate TCP synflood attacks against web servers. Comput. Netw. 92, 89\u2013100 (2015)","journal-title":"Comput. Netw."},{"key":"14_CR19","doi-asserted-by":"publisher","first-page":"482","DOI":"10.1016\/j.cose.2017.07.008","volume":"70","author":"R Sahay","year":"2017","unstructured":"Sahay, R., Blanc, G., Zhang, Z., Debar, H.: ArOMA: an SDN based autonomic DDoS mitigation framework. Comput. Secur. 70, 482\u2013499 (2017)","journal-title":"Comput. Secur."},{"key":"14_CR20","unstructured":"Specification, O.S.: Version 1.0. 0 (wire protocol 0x01). Open Networking Foundation (2009). \n                    https:\/\/www.opennetworking.org\/wp-content\/uploads\/2013\/04\/openflow-spec-v1.0.0.pdf"},{"key":"14_CR21","unstructured":"Schabel, L.: Working with synproxy. \n                    https:\/\/github.com\/firehol\/firehol\/wiki\/Working-with-SYNPROXY"},{"key":"14_CR22","unstructured":"Bernstein, D.J.: Syn cookies. \n                    https:\/\/cr.yp.to\/syncookies.html"},{"key":"14_CR23","unstructured":"Cisco, Inc.: Configuring Firewall TCP SYN Cookie, chap. Cisco ASR 1000 Series Aggregation Services Routers. Cisco, Inc., August 2018"},{"key":"14_CR24","unstructured":"Cisco Systems, Inc.: Implementing Open Flow Agent, chap. Cisco ASR 9000 Series Aggregation Services Router System Management Configuration Guide, Release 5.1.x. Cisco Systems, Inc., October 2017"},{"key":"14_CR25","unstructured":"Juniper Inc.: OpenFlow Support on Juniper Networks Devices, chap. Juniper, Inc., Junos OS (2018)"},{"key":"14_CR26","unstructured":"Juniper Networks, Inc.: Junos Space Network Management Platform Hardening, chap. Junos Space Service Automation, Release 16.1. Juniper Networks, Inc., August 2017"},{"key":"14_CR27","unstructured":"CVE details, May 2019. \n                    https:\/\/www.cvedetails.com\/vulnerability-list\/vendor_id-13628\/product_id-36893\/Opendaylight-Openflow.html"},{"key":"14_CR28","unstructured":"NIST: Cve-2018-1000155 detail. \n                    https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2018-1000155\n                    \n                  . Accessed May 2019"},{"key":"14_CR29","doi-asserted-by":"crossref","unstructured":"Bifulco, R., Cui, H., Karame, G.O., Klaedtke, F.: Fingerprinting software-defined networks. In: 2015 IEEE 23rd International Conference on Network Protocols (ICNP), pp. 453\u2013459. IEEE (2015)","DOI":"10.1109\/ICNP.2015.26"},{"key":"14_CR30","unstructured":"cURL client. \n                    https:\/\/github.com\/php-http\/curl-client"},{"key":"14_CR31","unstructured":"BoNeSi: the DDoS botnet simulator. \n                    https:\/\/github.com\/Markus-Go\/bonesi"},{"key":"14_CR32","volume-title":"Computer Architecture: A Quantitative Approach","author":"JL Hennesy","year":"2017","unstructured":"Hennesy, J.L., Patterson, D.A.: Computer Architecture: A Quantitative Approach, 6th edn. Morgan Kaufmann Publishers, Burlington (2017)","edition":"6"},{"key":"14_CR33","unstructured":"Openflow. \n                    https:\/\/github.com\/mininet\/openflow"},{"key":"14_CR34","unstructured":"Pfaff, B., Pettit, J., Koponen, T., Jackson, E., Zhou, A., Rajahalme, J., Gross, J., Wang, A., Stringer, J., Shelar, P., et\u00a0al.: The design and implementation of Open vSwitch. In: USENIX Symposium on Networked Systems Design and Implementation (NSDI), pp. 117\u2013130 (2015)"},{"key":"14_CR35","unstructured":"Wang, H., Zhang, D., Shin, K.G.: Detecting SYN flooding attacks. In: Twenty-First Annual Joint Conference of the IEEE Computer and Communications Societies, vol.\u00a03, pp. 1530\u20131539. IEEE (2002)"},{"key":"14_CR36","doi-asserted-by":"publisher","first-page":"308","DOI":"10.1016\/j.comnet.2015.02.026","volume":"81","author":"B Wang","year":"2015","unstructured":"Wang, B., Zheng, Y., Lou, W., Hou, Y.T.: DDoS attack protection in the era of cloud computing and software-defined networking. Comput. Netw. 81, 308\u2013319 (2015)","journal-title":"Comput. Netw."},{"key":"14_CR37","doi-asserted-by":"crossref","unstructured":"Shang, G., Zhe, P., Bin, X., Aiqun, H., Kui, R.: FloodDefender: protecting data and control plane resources under SDN-aimed DoS attacks. In: IEEE INFOCOM 2017-IEEE Conference on Computer Communications, pp. 1\u20139. IEEE (2017)","DOI":"10.1109\/INFOCOM.2017.8057009"},{"key":"14_CR38","doi-asserted-by":"crossref","unstructured":"Sonchack, J., Smith, J.M., Aviv, A.J., Keller, E.: Enabling practical software-defined networking security applications with OFX. In: NDSS, vol. 16, pp. 1\u201315 (2016)","DOI":"10.14722\/ndss.2016.23309"},{"key":"14_CR39","doi-asserted-by":"crossref","unstructured":"Porras, P., Shin, S., Yegneswaran, V., Fong, M., Tyson, M., Gu, G.: A security enforcement kernel for OpenFlow networks. In: Proceedings of the First Workshop on Hot Topics in Software Defined Networks, pp. 121\u2013126. ACM (2012)","DOI":"10.1145\/2342441.2342466"},{"key":"14_CR40","doi-asserted-by":"crossref","unstructured":"Hu, H., Han, W., Ahn, G.J., Zhao, Z.: FLOWGUARD: building robust firewalls for software-defined networks. In: Proceedings of the Third Workshop on Hot Topics in Software Defined Networking, pp. 97\u2013102. ACM (2014)","DOI":"10.1145\/2620728.2620749"},{"key":"14_CR41","doi-asserted-by":"crossref","unstructured":"Wang, H., Xu, L., Gu, G.: Floodguard: a DoS attack prevention extension in software-defined networks. In: Proceedings of the 2015 45th Annual IEEE\/IFIP International Conference on Dependable Systems and Networks, DSN 2015, pp. 239\u2013250. IEEE Computer Society, Washington (2015). \n                    http:\/\/dx.doi.org\/10.1109\/DSN.2015.27","DOI":"10.1109\/DSN.2015.27"},{"key":"14_CR42","unstructured":"Shin, S.W., Porras, P., Yegneswara, V., Fong, M., Gu, G., Tyson, M.: Fresco: modular composable security services for software-defined networks. In: 20th Annual Network & Distributed System Security Symposium, NDSS (2013)"},{"key":"14_CR43","doi-asserted-by":"crossref","unstructured":"Mousavi, S.M., St-Hilaire, M.: Early detection of DDoS attacks against SDN controllers. In: 2015 International Conference on Computing, Networking and Communications (ICNC), pp. 77\u201381. IEEE (2015)","DOI":"10.1109\/ICCNC.2015.7069319"},{"key":"14_CR44","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.patrec.2014.07.019","volume":"51","author":"MH Bhuyan","year":"2015","unstructured":"Bhuyan, M.H., Bhattacharyya, D., Kalita, J.K.: An empirical evaluation of information metrics for low-rate and high-rate DDoS attack detection. Pattern Recognit. Lett. 51, 1\u20137 (2015)","journal-title":"Pattern Recognit. Lett."},{"key":"14_CR45","doi-asserted-by":"publisher","first-page":"685","DOI":"10.1016\/j.future.2018.07.017","volume":"89","author":"KS Sahoo","year":"2018","unstructured":"Sahoo, K.S., Puthal, D., Tiwary, M., Rodrigues, J.J., Sahoo, B., Dash, R.: An early detection of low rate DDoS attack to SDN based data center networks using information distance metrics. Futur. Gener. Comput. Syst. 89, 685\u2013697 (2018)","journal-title":"Futur. Gener. Comput. Syst."}],"container-title":["Advances in Intelligent Systems and Computing","National Cyber Summit (NCS) Research Track"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-31239-8_14","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,9,24]],"date-time":"2019-09-24T06:14:00Z","timestamp":1569305640000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-31239-8_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,9,25]]},"ISBN":["9783030312381","9783030312398"],"references-count":45,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-31239-8_14","relation":{},"ISSN":["2194-5357","2194-5365"],"issn-type":[{"type":"print","value":"2194-5357"},{"type":"electronic","value":"2194-5365"}],"subject":[],"published":{"date-parts":[[2019,9,25]]},"assertion":[{"value":"25 September 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"NCS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"National Cyber Summit","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Huntsville, AL","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"USA","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"4 June 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6 June 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"ncs2019","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.nationalcybersummit.com\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}