Accepted author manuscript, 234 KB, PDF document
Final published version
Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSN › Conference contribution/Paper › peer-review
| Publication date | 31/12/2019 |
|---|---|
| Host publication | Cyberspace Data and Intelligence, and Cyber-Living, Syndrome, and Health |
| Editors | Huansheng Ning |
| Pages | 187-198 |
| Number of pages | 12 |
| Volume | 1137 CCIS |
| <mark>Original language</mark> | English |
| Name | Communications in Computer and Information Science |
|---|---|
| Publisher | Springer |
The proliferation of the Internet of Things (IoT) has led to a rapid increase in SSDP (Simple Service Discovery Protocol) reflection attacks. However, there is very scarce work on defending these attacks, with only some engineering advices on shutting down attacked services. This paper proposes a comprehensive approach to defend SSDP reflection attacks, which is called multi-location defence scheme (MLDS). MLDS operates at multiple places, working throughout the attacking link, starting from attack sources to victims, without prior detecting attacks. Attackers usually utilized bots in a botnet to launch attacks, but bots can act as defenders to carry out defence strategies in our MLDS, which is an unconventional approach to make the defence effective. Finally, we analyzed thoroughly packet traffic situations when deploying MLDS to different defence locations.