Home > Research > Publications & Outputs > A Multi-location Defence Scheme Against SSDP Re...

Electronic data

  • 1570595439_Final without highlight

    Accepted author manuscript, 234 KB, PDF document


Text available via DOI:

View graph of relations

A Multi-location Defence Scheme Against SSDP Reflection Attacks in the Internet of Things

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSNConference contribution/Paperpeer-review

Publication date31/12/2019
Host publicationCyberspace Data and Intelligence, and Cyber-Living, Syndrome, and Health
EditorsHuansheng Ning
Number of pages12
Volume1137 CCIS
<mark>Original language</mark>English

Publication series

NameCommunications in Computer and Information Science


The proliferation of the Internet of Things (IoT) has led to a rapid increase in SSDP (Simple Service Discovery Protocol) reflection attacks. However, there is very scarce work on defending these attacks, with only some engineering advices on shutting down attacked services. This paper proposes a comprehensive approach to defend SSDP reflection attacks, which is called multi-location defence scheme (MLDS). MLDS operates at multiple places, working throughout the attacking link, starting from attack sources to victims, without prior detecting attacks. Attackers usually utilized bots in a botnet to launch attacks, but bots can act as defenders to carry out defence strategies in our MLDS, which is an unconventional approach to make the defence effective. Finally, we analyzed thoroughly packet traffic situations when deploying MLDS to different defence locations.