{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,6]],"date-time":"2026-04-06T10:12:24Z","timestamp":1775470344869,"version":"3.50.1"},"reference-count":57,"publisher":"Springer Science and Business Media LLC","issue":"4","license":[{"start":{"date-parts":[[2020,8,24]],"date-time":"2020-08-24T00:00:00Z","timestamp":1598227200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2020,8,24]],"date-time":"2020-08-24T00:00:00Z","timestamp":1598227200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"name":"University of Zurich and the Horizon 2020 CONCORDIA Project","award":["830927"],"award-info":[{"award-number":["830927"]}]},{"DOI":"10.13039\/501100006447","name":"University of Zurich","doi-asserted-by":"crossref","id":[{"id":"10.13039\/501100006447","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["J Netw Syst Manage"],"published-print":{"date-parts":[[2020,10]]},"abstract":"<jats:title>Abstract<\/jats:title><jats:p>Distributed Denial-of-Service (DDoS) attacks are one of the major causes of concerns for communication service providers. When an attack is highly sophisticated and no countermeasures are available directly, sharing hardware and defense capabilities become a compelling alternative. Future network and service management can base its operations on equally distributed systems to neutralize highly distributed DDoS attacks. A cooperative defense allows for the combination of detection and mitigation capabilities, the reduction of overhead at a single point, and the blockage of malicious traffic near its source. Main challenges impairing the widespread deployment of existing cooperative defense are: (a) high complexity of operation and coordination, (b) need for trusted and secure communications, (c) lack of incentives for service providers to cooperate, and (d) determination on how operations of these systems are affected by different legislation, regions, and countries. The cooperative Blockchain Signaling System (<jats:italic>BloSS<\/jats:italic>) defines an effective and alternative solution for security management, especially cooperative defenses, by exploiting Blockchains (BC) and Software-Defined Networks (SDN) for sharing attack information, an exchange of incentives, and tracking of reputation in a fully distributed and automated fashion. Therefore,<jats:italic>BloSS<\/jats:italic>was prototyped and evaluated through a global experiment, without the burden to maintain, design, and develop special registries and gossip protocols.<\/jats:p>","DOI":"10.1007\/s10922-020-09559-4","type":"journal-article","created":{"date-parts":[[2020,8,24]],"date-time":"2020-08-24T07:02:30Z","timestamp":1598252550000},"page":"953-989","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":28,"title":["Blockchain Signaling System (BloSS): Cooperative Signaling of Distributed Denial-of-Service Attacks"],"prefix":"10.1007","volume":"28","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-3277-3799","authenticated-orcid":false,"given":"Bruno","family":"Rodrigues","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Eder","family":"Scheid","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Christian","family":"Killer","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Muriel","family":"Franco","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Burkhard","family":"Stiller","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2020,8,24]]},"reference":[{"key":"9559_CR1","unstructured":"Akamai. How to protect against ddos attacks\u2014stop denial of service"},{"key":"9559_CR2","doi-asserted-by":"publisher","first-page":"11","DOI":"10.1109\/MSP.2016.64","volume":"14","author":"M Felici","year":"2016","unstructured":"Felici, M., Wainwright, N., Cavallini, S., Bisogni, F.: What\u2019s new in the economics of cybersecurity? IEEE Secur. Privacy 14, 11\u201313 (2016)","journal-title":"IEEE Secur. Privacy"},{"key":"9559_CR3","unstructured":"IoTAnalytics. State of the IoT 2018: number of IoT devices now at 7B\u2014Market accelerating, Fev (2018)"},{"key":"9559_CR4","unstructured":"Akamai. The state of the internet (2020)"},{"key":"9559_CR5","doi-asserted-by":"crossref","unstructured":"Maglaras, L., Kim, K.H., Janicke, H., Ferrag, M.A.,Rallis, S., Fragkou, P., Maglaras, A., Cruz, T.J.: Cyber security of critical infrastructures, vol. 4. ICT Express,, SI: CI and Smart Grid Cyber Security, pp. 42\u201345, (2018)","DOI":"10.1016\/j.icte.2018.02.001"},{"key":"9559_CR6","unstructured":"The\u00a0Associated Press. Hackers Used \u2019Internet of Things\u2019 Devices to Cause Friday\u2019s Massive DDoS Cyberattack (2016)"},{"key":"9559_CR7","doi-asserted-by":"crossref","unstructured":"Gu, G., Yegneswaran, V., Porras, P., Stoll, J., Lee, W.: Active botnet probing to identify obscure command and control channels. In: 2009 annual computer security applications conference, pp. 241\u2013253. IEEE, New York (2009)","DOI":"10.1109\/ACSAC.2009.30"},{"issue":"1","key":"9559_CR8","doi-asserted-by":"publisher","first-page":"19","DOI":"10.3390\/technologies7010019","volume":"7","author":"SD Kotey","year":"2019","unstructured":"Kotey, S.D., Tchao, E.T., Gadze, J.D.: On distributed denial of service current defense schemes. Technologies 7(1), 19\u201325 (2019)","journal-title":"Technologies"},{"issue":"4","key":"9559_CR9","doi-asserted-by":"publisher","first-page":"2046","DOI":"10.1109\/SURV.2013.031413.00127","volume":"15","author":"ST Zargar","year":"2013","unstructured":"Zargar, S.T., Joshi, J., Tipper, D.: A survey of defense mechanisms against distributed denial of service (DDoS) flooding attacks. IEEE Commun. Surv. Tutor. 15(4), 2046\u20132069 (2013)","journal-title":"IEEE Commun. Surv. Tutor."},{"issue":"1","key":"9559_CR10","doi-asserted-by":"publisher","first-page":"03","DOI":"10.1145\/1216370.1216373","volume":"39","author":"T Peng","year":"2007","unstructured":"Peng, T., Leckie, C., Ramamohanarao, K.: Survey of network-based defense mechanisms countering the DoS and DDoS problems. ACM Comput. Surv. CSUR 39(1), 03\u201315 (2007)","journal-title":"ACM Comput. Surv. CSUR"},{"key":"9559_CR11","doi-asserted-by":"publisher","first-page":"169","DOI":"10.1007\/978-3-662-49275-8_19","volume-title":"Digital marketplaces unleashed","author":"T Bocek","year":"2018","unstructured":"Bocek, T., Stiller, B.: Smart contracts-blockchains in the wings. Digital marketplaces unleashed, pp. 169\u2013184. Springer, Berlin (2018)"},{"key":"9559_CR12","doi-asserted-by":"crossref","unstructured":"Rashidi, B., Fung, C.: CoFence: a collaborative ddos defence using network function virtualization. In: 12th international conference on network and service management (CNSM 16) (2016)","DOI":"10.1109\/CNSM.2016.7818412"},{"key":"9559_CR13","unstructured":"Fayaz, S., Tobioka, Y., Sekar, V., Bailey, M.: Bohatei: flexible and elastic DDoS defense. In: 24th USENIX security symposium (USENIX Security 15), pp. 817\u2013832 (2015)"},{"key":"9559_CR14","doi-asserted-by":"crossref","unstructured":"Rodrigues, B., Bocek, T., Lareida, A., Hausheer, D., Rafati, S., Stiller, B.: A blockchain-based architecture for collaborative DDoS mitigation with smart contracts. In: IFIP international conference on autonomous infrastructure, management, and security (AIMS 2017). Lecture notes in computer science, vol. 10356, pp. 16\u201329. Springer, Zurich (2017)","DOI":"10.1007\/978-3-319-60774-0_2"},{"key":"9559_CR15","unstructured":"Rodrigues, B., Bocek, T., Stiller, B.: Enabling a cooperative, multi-domain DDoS defense by a blockchain signaling system (BloSS). In: Demonstration track, pp. 1\u20133, Singapore, IEEE, Singapore (2017)"},{"key":"9559_CR16","doi-asserted-by":"crossref","unstructured":"Rodrigues, B., Trendafilov, S., Scheid, E.J., Stiller, B.: SC-FLARE: cooperative DDoS signalingbased on smart contracts. In: IEEE international conference on blockchain and cryptocurrency (ICBC 2020), pp. 1\u20133, IEEE, Toronto, (2020)","DOI":"10.1109\/ICBC48266.2020.9169750"},{"key":"9559_CR17","unstructured":"Gruhler, A., Rodrigues, B., Stiller, B.: A reputation scheme for a blockchain-based network cooperative defense. In: 2019 IFIP\/IEEE symposium on integrated network and service management (IM 2019), pp. 71\u201379, Washington, United States of America (USA) (2019)"},{"key":"9559_CR18","doi-asserted-by":"crossref","unstructured":"Killer, C., Rodrigues, B., Stiller, B.: Security management and visualization in a blockchain-based collaborative defense. In: 2019 IEEE international conference on blockchain and cryptocurrency (ICBC), pp. 108\u2013111. IEEE, New York (2019)","DOI":"10.1109\/BLOC.2019.8751272"},{"key":"9559_CR19","doi-asserted-by":"crossref","unstructured":"Killer, C., Rodrigues, B., Stiller, B.: Threat management dashboard for a blockchain collaborative defense. In: 2019 IEEE globecom workshops (GC Wkshps), pp. 1\u20136. IEEE, New York (2019)","DOI":"10.1109\/GCWkshps45667.2019.9024522"},{"key":"9559_CR20","unstructured":"Rodrigues, B., Eisenring, L., Scheid, E., Bocek, T., Stiller, B.: Evaluating a blockchain-based cooperative defense. In: 2019 IFIP\/IEEE symposium on integrated network and service management (IM 2019), pp. 533\u2013538, Washington, United States of America (USA) (2019)"},{"key":"9559_CR21","unstructured":"Benet, J.: IPFS-content addressed, versioned, P2P file system. arXiv preprint arXiv:1407.3561 (2014)"},{"issue":"4","key":"9559_CR22","doi-asserted-by":"publisher","first-page":"61","DOI":"10.1145\/964725.633032","volume":"32","author":"A Keromytis","year":"2002","unstructured":"Keromytis, A., Misra, V., Rubenstein, D.: SOS: secure overlay services. ACM SIGCOMM Comput. Commun. Rev. 32(4), 61\u201372 (2002)","journal-title":"ACM SIGCOMM Comput. Commun. Rev."},{"key":"9559_CR23","doi-asserted-by":"crossref","unstructured":"Papadopoulos, C., Lindell, R., Mehringer, J., Hussain, A., Govindan, R.: COSSACK: coordinated suppression of simultaneous attacks. In: Proceedings DARPA information survivability conference and exposition, vol.\u00a01, pp. 2\u201313. IEEE, New York (2003)","DOI":"10.1109\/DISCEX.2003.1194932"},{"key":"9559_CR24","doi-asserted-by":"crossref","unstructured":"Oikonomou, G., Mirkovic, J., Reiher, P., Robinson, M.: A framework for a collaborative DDoS defense. In: 2006 22nd annual computer security applications conference (ACSAC\u201906), pp. 33\u201342. IEEE, New York (2006)","DOI":"10.1109\/ACSAC.2006.5"},{"key":"9559_CR25","unstructured":"CloudFare. CloudFlare advanced DDoS protection (2016)"},{"key":"9559_CR26","unstructured":"Khalimonenko, A., Kupreev, O., Badovskaya, E.: DDoS attacks in Q1 2018. https:\/\/securelist.com\/ddos-report-in-q1-2018\/85373\/, April 2018. last visit March 6 (2020)"},{"issue":"1","key":"9559_CR27","first-page":"69","volume":"38","author":"G Zhang","year":"2006","unstructured":"Zhang, G., Parashar, M.: Cooperative defence against DDoS attacks. J. Res. Pract. Inf. Technol. 38(1), 69\u201384 (2006)","journal-title":"J. Res. Pract. Inf. Technol."},{"key":"9559_CR28","doi-asserted-by":"crossref","unstructured":"Velauthapillai, T., Harwood, A., Karunasekera, S.: Global detection of flooding-based DDoS attacks using a cooperative overlay network. In: 2010 4th international conference on network and system security (NSS), pp. 357\u2013364. IEEE, New York (2010)","DOI":"10.1109\/NSS.2010.68"},{"key":"9559_CR29","doi-asserted-by":"crossref","unstructured":"Steinberger, J., Kuhnert, B., Sperotto, A., Baier, H., Pras, A.: Collaborative DDoS defense using flow-based security event information. In: NOMS 2016\u20132016 IEEE\/IFIP network operations and management symposium, pp. 516\u2013522 (2016)","DOI":"10.1109\/NOMS.2016.7502852"},{"key":"9559_CR30","doi-asserted-by":"crossref","unstructured":"Sahay, R., Blanc, G., Zhang, Z., Debar, H.: Towards autonomic DDoS mitigation using software defined networking. In SENT 2015: NDSS workshop on security of emerging networking technologies. Internet society (2015)","DOI":"10.14722\/sent.2015.23004"},{"key":"9559_CR31","unstructured":"Ioannidis, J., Bellovin, S.M.: Implementing PushBack: router-based defense against DDoS attacks (2002)"},{"key":"9559_CR32","unstructured":"Mortensen, A., Andreasen, F., Reddy, T., Gray, C., Compton, R., Teague, N.: Distributed-denial-of-service open threat signaling (DOTS) architecture. Internet-draft draft-ietf-dots-architecture-06, internet engineering task force. Work in Progress (2018)"},{"key":"9559_CR33","doi-asserted-by":"crossref","unstructured":"Rodrigues, B., Stiller, B.: Cooperative signaling of DDoS attacks in a blockchain-based network. In: Proceedings of the ACM SIGCOMM 2019 conference posters and demos, SIGCOMM Posters and Demos \u201919, pp. 39\u201341, ACM, New York (2019)","DOI":"10.1145\/3342280.3342300"},{"key":"9559_CR34","first-page":"1","volume":"151","author":"G Wood","year":"2014","unstructured":"Wood, G.: Ethereum: a secure decentralised generalised transaction ledger. Ethereum Project Yellow Paper 151, 1\u201332 (2014)","journal-title":"Ethereum Project Yellow Paper"},{"key":"9559_CR35","unstructured":"Bada, M.: Sadie Creese. Chris Mitchell, and Elizabeth Phillips. Improving the Effectiveness of CSIRTs, Michael Goldsmith (2014)"},{"key":"9559_CR36","doi-asserted-by":"crossref","unstructured":"Croman, K., Decker, C., Eyal, I., Gencer, A.E., Juels, A., Kosba, A., Miller, A., Saxena, P., Shi, E., Sirer, E.: On scaling decentralized blockchains. In: International conference on financial cryptography and data security, pp. 106\u2013125. Springer, Berlin (2016)","DOI":"10.1007\/978-3-662-53357-4_8"},{"key":"9559_CR37","doi-asserted-by":"crossref","unstructured":"Decker, C., Wattenhofer, R.: Information propagation in the bitcoin network. In: IEEE P2P 2013 proceedings, pp. 1\u201310. IEEE, New York (2013)","DOI":"10.1109\/P2P.2013.6688704"},{"issue":"4","key":"9559_CR38","doi-asserted-by":"publisher","first-page":"352","DOI":"10.1504\/IJWGS.2018.095647","volume":"14","author":"Z Zheng","year":"2018","unstructured":"Zheng, Z., Xie, S., Dai, H.N., Chen, X., Wang, H.: Blockchain challenges and opportunities: a survey. Int. J. Web Grid Serv. 14(4), 352\u2013375 (2018)","journal-title":"Int. J. Web Grid Serv."},{"key":"9559_CR39","unstructured":"Skierka, I., Morgus, R., Hohmann, M., Maurer, T.: CSIRT basics for policy-makers. Types & culture of computer security incident response teams, the history (2015)"},{"key":"9559_CR40","unstructured":"PolySwarm. A decentralized cyber threat intelligence market (2019)"},{"key":"9559_CR41","doi-asserted-by":"crossref","unstructured":"Just, S., Premraj, R., Zimmermann, T.: Towards the next generation of bug tracking systems. In: 2008 IEEE symposium on visual languages and human-centric computing, pp. 82\u201385. IEEE, New York (2008)","DOI":"10.1109\/VLHCC.2008.4639063"},{"key":"9559_CR42","doi-asserted-by":"publisher","first-page":"1117","DOI":"10.1016\/j.promfg.2015.07.186","volume":"3","author":"D Henshel","year":"2015","unstructured":"Henshel, D., Cains, M., Hoffman, B., Kelley, T.: Trust as a human factor in holistic cyber security risk assessment. Procedia Manuf. 3, 1117\u20131124 (2015)","journal-title":"Procedia Manuf."},{"key":"9559_CR43","doi-asserted-by":"publisher","first-page":"50","DOI":"10.1016\/j.elerap.2018.03.005","volume":"29","author":"F Hawlitschek","year":"2018","unstructured":"Hawlitschek, F., Notheisen, B., Teubner, T.: The limits of trust-free systems: a literature review on blockchain technology and trust in the sharing economy. Electron. Commer. Res. Appl. 29, 50\u201363 (2018)","journal-title":"Electron. Commer. Res. Appl."},{"key":"9559_CR44","doi-asserted-by":"publisher","first-page":"36","DOI":"10.1109\/MCOM.2016.7565270","volume":"54","author":"TW Um","year":"2016","unstructured":"Um, T.W., Lee, G.M., Choi, J.K.: Strengthening trust in the future social-cyber-physical infrastructure: an ITU-T perspective. IEEE Commun. Mag. 54, 36\u201342 (2016)","journal-title":"IEEE Commun. Mag."},{"key":"9559_CR45","first-page":"44","volume":"1","author":"I Pranata","year":"2012","unstructured":"Pranata, I., Skinner, G., Athauda, R.: A holistic review on trust and reputation management systems for digital environments. Int. J. Comput. Inf. Technol. 1, 44\u201353 (2012)","journal-title":"Int. J. Comput. Inf. Technol."},{"key":"9559_CR46","unstructured":"Kim, J., Yoon, Y., Zo, H.: Why people participate in the sharing economy: a social exchange perspective. In: PACIS, pp. 76 (2015)"},{"issue":"4","key":"9559_CR47","doi-asserted-by":"publisher","first-page":"346","DOI":"10.1016\/j.elerap.2009.07.003","volume":"9","author":"L Yaobin","year":"2010","unstructured":"Yaobin, L., Zhao, L., Wang, B.: From virtual community members to C2C E-commerce buyers: trust in virtual communities and its effect on consumers\u2019 purchase Intention. Electron. Commer. Res. Appl. 9(4), 346\u2013360 (2010)","journal-title":"Electron. Commer. Res. Appl."},{"key":"9559_CR48","unstructured":"Stephan, M., Bruno, R., Eder, S., Salil, K., Burkhard, S.: Toward mitigation-as-a-service in cooperative network defenses. In 2018 IEEE 4th international conference on big data intelligence and computing and cyber science and technology congress (CyberSciTech 2018), pp. 362\u2013367, Athens, Greece (2018)"},{"key":"9559_CR49","unstructured":"Yao, W. Julita, V.: Trust and reputation model in peer-to-peer networks. In: Proceedings third international conference on peer-to-peer computing (P2P2003), pp. 150\u2013157, 00604 (2003)"},{"issue":"1","key":"9559_CR50","doi-asserted-by":"publisher","first-page":"20","DOI":"10.1186\/s40854-016-0039-4","volume":"2","author":"Y Cai","year":"2016","unstructured":"Cai, Y., Zhu, D.: Fraud detections for online businesses: a perspective from blockchain technology. Fin Innov 2(1), 20 (2016)","journal-title":"Fin Innov"},{"key":"9559_CR51","unstructured":"Cryptography developers. Python cryptography library. https:\/\/cryptography.io\/en\/latest\/ (2017). Accessed 28 July 2018"},{"key":"9559_CR52","unstructured":"Percival, C.: Cryptographic right answers. http:\/\/www.daemonology.net\/blog\/2009-06-11-cryptographic-right-answers.html (2009). Accessed 28 July 2018"},{"key":"9559_CR53","unstructured":"Protocol Labs. IPFS stream security transport (libp2p-secio). https:\/\/github.com\/libp2p\/go-libp2p-secio (2018). Accessed 29 July 2018"},{"key":"9559_CR54","unstructured":"Rinkeby. Rinkeby testnetwork, voluntarely listed full nodes (2019)"},{"key":"9559_CR55","unstructured":"Scheid, E., Rodrigues, B., Stiller, B.: Toward a policy-based blockchain agnostic framework. In: IFIP\/IEEE symposium on integrated network and service management (IM 2019), pp. 609\u2013613, Washington, DC, USA (2019)"},{"key":"9559_CR56","doi-asserted-by":"crossref","unstructured":"Scheid, E., Hegnauer, T., Rodrigues, B., Stiller, B.: Bifr\u00f6st: a modular blockchain interoperability API. In: IEEE conference on local computer networks (LCN 2019), pp. 332\u2013339, Osnabr\u00fcck, Germany (2019)","DOI":"10.1109\/LCN44214.2019.8990860"},{"key":"9559_CR57","doi-asserted-by":"crossref","unstructured":"Franco, M., Rodrigues, B., Stiller, B.: MENTOR: the design and evaluation of a protection services recommender system. In: 2019 15th international conference on network and service management (CNSM), pp. 1\u20137 (2019)","DOI":"10.23919\/CNSM46954.2019.9012686"}],"container-title":["Journal of Network and Systems Management"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10922-020-09559-4.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s10922-020-09559-4\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10922-020-09559-4.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,8,12]],"date-time":"2024-08-12T10:23:26Z","timestamp":1723458206000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s10922-020-09559-4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,8,24]]},"references-count":57,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2020,10]]}},"alternative-id":["9559"],"URL":"https:\/\/doi.org\/10.1007\/s10922-020-09559-4","relation":{},"ISSN":["1064-7570","1573-7705"],"issn-type":[{"value":"1064-7570","type":"print"},{"value":"1573-7705","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020,8,24]]},"assertion":[{"value":"9 May 2020","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"13 July 2020","order":2,"name":"revised","label":"Revised","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"28 July 2020","order":3,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"24 August 2020","order":4,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}