Home > Research > Publications & Outputs > Towards DDoS attack resilient wide area monitor...

Links

Text available via DOI:

View graph of relations

Towards DDoS attack resilient wide area monitoring systems

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSNConference contribution/Paperpeer-review

Published

Standard

Towards DDoS attack resilient wide area monitoring systems. / Demir, K.; Suri, Neeraj.
ARES '17 Proceedings of the 12th International Conference on Availability, Reliability and Security. ACM, 2017. 99.

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSNConference contribution/Paperpeer-review

Harvard

Demir, K & Suri, N 2017, Towards DDoS attack resilient wide area monitoring systems. in ARES '17 Proceedings of the 12th International Conference on Availability, Reliability and Security., 99, ACM. https://doi.org/10.1145/3098954.3103164

APA

Demir, K., & Suri, N. (2017). Towards DDoS attack resilient wide area monitoring systems. In ARES '17 Proceedings of the 12th International Conference on Availability, Reliability and Security Article 99 ACM. https://doi.org/10.1145/3098954.3103164

Vancouver

Demir K, Suri N. Towards DDoS attack resilient wide area monitoring systems. In ARES '17 Proceedings of the 12th International Conference on Availability, Reliability and Security. ACM. 2017. 99 doi: 10.1145/3098954.3103164

Author

Demir, K. ; Suri, Neeraj. / Towards DDoS attack resilient wide area monitoring systems. ARES '17 Proceedings of the 12th International Conference on Availability, Reliability and Security. ACM, 2017.

Bibtex

@inproceedings{30a7b36ea0e14efc9b0a70f6a7aaf9b1,
title = "Towards DDoS attack resilient wide area monitoring systems",
abstract = "The traditional physical power grid is evolving into a cyber-physical Smart Grid (SG) that links the cyber communication and computational elements with the physical control functions to dynamically integrate varied and geographically distributed energy producers/ consumers. In the SG, the cyber elements of Wide Area Measurement Systems (WAMS) are deployed to provide the critical monitoring of the state of power transmission and distribution to accomplish real-time control of the grid. Unfortunately, the increasing adoption of such computing/communication cyber-technologies essential to providing the SG operations also opens the risk of the SG being vulnerable to cyberattacks. In particular, attacks such as Denial-of-Service (DoS) and Distributed DoS (DDoS) are of primary concern for WAMS where such attacks can compromise its safety-critical accuracy and responsiveness characteristics. To prevent DoS/DDoS attacks at the transport and application layer from affecting the WAMS operations, we propose a proactive and robust extension of the Multipath-TCP (MPTCP) transportation protocol that mitigates such attacks by using a novel stream hopping MPTCP mechanism, termed as MPTCP-H. The proposed MPTCP-H hides the open port numbers of the connection from an attacker by renewing (over time) the subflows over new port numbers without perturbing the WAMS data traffic. Our results demonstrate MPTCP-H to be both effective and efficient (for reduced latency and congestion), and also applicable to the communication frameworks of other similar Critical Infrastructures. {\textcopyright} 2017 Association for Computing Machinery.",
keywords = "Ddos attacks, Security, Wide area monitoring systems, Electric power system control, Electric power system measurement, Electric power transmission networks, Monitoring, Network security, Real time control, Real time systems, Safety engineering, Smart power grids, Communication framework, Computational elements, Critical monitoring, DDoS Attack, Distributed energies, Wide area monitoring system, Wide- area measurement systems (WAMS), Denial-of-service attack",
author = "K. Demir and Neeraj Suri",
year = "2017",
month = aug,
day = "29",
doi = "10.1145/3098954.3103164",
language = "English",
isbn = "9781450352574",
booktitle = "ARES '17 Proceedings of the 12th International Conference on Availability, Reliability and Security",
publisher = "ACM",

}

RIS

TY - GEN

T1 - Towards DDoS attack resilient wide area monitoring systems

AU - Demir, K.

AU - Suri, Neeraj

PY - 2017/8/29

Y1 - 2017/8/29

N2 - The traditional physical power grid is evolving into a cyber-physical Smart Grid (SG) that links the cyber communication and computational elements with the physical control functions to dynamically integrate varied and geographically distributed energy producers/ consumers. In the SG, the cyber elements of Wide Area Measurement Systems (WAMS) are deployed to provide the critical monitoring of the state of power transmission and distribution to accomplish real-time control of the grid. Unfortunately, the increasing adoption of such computing/communication cyber-technologies essential to providing the SG operations also opens the risk of the SG being vulnerable to cyberattacks. In particular, attacks such as Denial-of-Service (DoS) and Distributed DoS (DDoS) are of primary concern for WAMS where such attacks can compromise its safety-critical accuracy and responsiveness characteristics. To prevent DoS/DDoS attacks at the transport and application layer from affecting the WAMS operations, we propose a proactive and robust extension of the Multipath-TCP (MPTCP) transportation protocol that mitigates such attacks by using a novel stream hopping MPTCP mechanism, termed as MPTCP-H. The proposed MPTCP-H hides the open port numbers of the connection from an attacker by renewing (over time) the subflows over new port numbers without perturbing the WAMS data traffic. Our results demonstrate MPTCP-H to be both effective and efficient (for reduced latency and congestion), and also applicable to the communication frameworks of other similar Critical Infrastructures. © 2017 Association for Computing Machinery.

AB - The traditional physical power grid is evolving into a cyber-physical Smart Grid (SG) that links the cyber communication and computational elements with the physical control functions to dynamically integrate varied and geographically distributed energy producers/ consumers. In the SG, the cyber elements of Wide Area Measurement Systems (WAMS) are deployed to provide the critical monitoring of the state of power transmission and distribution to accomplish real-time control of the grid. Unfortunately, the increasing adoption of such computing/communication cyber-technologies essential to providing the SG operations also opens the risk of the SG being vulnerable to cyberattacks. In particular, attacks such as Denial-of-Service (DoS) and Distributed DoS (DDoS) are of primary concern for WAMS where such attacks can compromise its safety-critical accuracy and responsiveness characteristics. To prevent DoS/DDoS attacks at the transport and application layer from affecting the WAMS operations, we propose a proactive and robust extension of the Multipath-TCP (MPTCP) transportation protocol that mitigates such attacks by using a novel stream hopping MPTCP mechanism, termed as MPTCP-H. The proposed MPTCP-H hides the open port numbers of the connection from an attacker by renewing (over time) the subflows over new port numbers without perturbing the WAMS data traffic. Our results demonstrate MPTCP-H to be both effective and efficient (for reduced latency and congestion), and also applicable to the communication frameworks of other similar Critical Infrastructures. © 2017 Association for Computing Machinery.

KW - Ddos attacks

KW - Security

KW - Wide area monitoring systems

KW - Electric power system control

KW - Electric power system measurement

KW - Electric power transmission networks

KW - Monitoring

KW - Network security

KW - Real time control

KW - Real time systems

KW - Safety engineering

KW - Smart power grids

KW - Communication framework

KW - Computational elements

KW - Critical monitoring

KW - DDoS Attack

KW - Distributed energies

KW - Wide area monitoring system

KW - Wide- area measurement systems (WAMS)

KW - Denial-of-service attack

U2 - 10.1145/3098954.3103164

DO - 10.1145/3098954.3103164

M3 - Conference contribution/Paper

SN - 9781450352574

BT - ARES '17 Proceedings of the 12th International Conference on Availability, Reliability and Security

PB - ACM

ER -