RESEARCH OF THE MODEL OF PROTECTION AGAINST DDOS ATTACKS

This research investigates the Distributed Denial-of-Service (DDoS) protection model, focusing on flooding attacks, where attackers overwhelm a server with excessive requests to degrade its processing capabilities. Unlike traditional approaches that merely aim to mitigate the impact of DDoS attacks, our study emphasizes developing robust protection models to safeguard against such threats. We introduce a novel protection strategy that incorporates rate-limiting algorithms to control the influx of requests, ensuring that only legitimate traffic reaches the server. Further, we explore packet filtering based on valid Time-to-Live (TTL) values, coupled with innovative packet scheduling techniques: including First-Come, First-Served (FCFS) and Priority Queue methodologies to enhance server responsiveness and efficiency. Through simulations our findings reveal significant improvements in server performance under DDoS attack conditions, evidenced by reduced packet drop rates and improved response times. The successful implementation of these protection models demonstrates their potential in securing networks against the disruptive effects of DDoS attacks, offering a promising direction for future research in cybersecurity.

1. Baskanov A.N. Sposoby protivodeistviya i sredstva rannego vyyavleniya DDoS-atak / A.N. Baskanov // Ehkonomika i kachestvo sistem svyazi. – 2019. – Rezhim dostupa: https://cyberleninka.ru/article/n/sposoby-protivodeystviya-i-sredstva-rannego-vyyavleniya-ddosatak (data obrashcheniya: 2021-06-24). (In Russian).

2. Gu Q. Denial of Service Attacks / Q. Gu, P. Liu // Handbook of Computer Networks: Distributed Networks, Network Planning, Control, Management, and New Trends and Applications. – 2012. – Vol. 3. (In English).

3. Tripathi N. DoS and DDoS Attacks: Impact, Analysis and Countermeasures. / N. Tripathi, B.M. Mehtre // Conference: Advances in Computing, Networking and Security: TEQIP II National Conference. – 2014. – Access Mode: https://www.researchgate.net/publication/259941506_DoS_and_DDoS_Attacks_Imp act_Analysis_and_Countermeasures (online; accessed: 2023-06-15). (In English).

4. Afanas'eva D.V. Problema DDoS-atak / D.V. Afanas'eva // Nauka, obrazovanie i kul'tura. – 2019. – Rezhim dostupa: https://cyberleninka.ru/article/n/problema-ddos-atak (data obrashcheniya: 2021-06-23). (In Russian).

5. securelist – DDoS-ataki v I kvartale 2021 goda. – 2021. – Rezhim dostupa: https://securelist.ru/ddos-attacks-in-q1-2021/101390/ (data obrashcheniya: 2021-06-24). (In English).

6. Zeb K. DDoS Attacks and Countermeasures in Cyberspace / K. Zeb, O. Baig, M.K. Asif // IEEE 2nd World Symposium on Web Applications and Networking (WSWAN). – 2015. – Mar. – P. 1-6. (In English).

7. Slepovichev I.I. Obnaruzhenie DDoS atak nechetkoi neironnoi set'yu. // Izvestiya Saratovskogo universiteta. Novaya seriya. Seriya Matematika. Mekhanika. Informatika. –2009. – Rezhim dostupa: https://cyberleninka.ru/article/n/obnaruzhenie-ddos-atak-nechetkoy-neyronnoy-setyu (data obrashcheniya: 2023-06-21). (In Russian).

8. Doriguzzi-Corin R. Lucid: A Practical, Lightweight Deep Learning Solution for DDoS Attack Detectionn / R. Doriguzzi-Corin // IEEE Transactions on Network and Service Management. – 2020. – Feb. – P. 1-14. (In English).

9. Ispol'zovanie SVM dlya obnaruzheniya DDoS-atak v seti SDN / Dong Li i dr. // IOP Conf. Ser.: Mater. nauk. Eng. 466 012003, 2018. (In English).

10. Metod obnaruzheniya DDoS-atak, osnovannyi na izvlechenii priznakov iz setei glubokikh ubezhdenii / Itsze Li i dr. // seriya konferentsii IOP: Nauka o okruzhayushchei srede, tom 252, vypusk 3. – 2019. (In English).

11. Obnaruzhenie DDoS-atak na tsentry obrabotki dannykh s pomoshch'yu korrelyatsionnogo analiza / Pehn Syao i dr. // Komp'yuternye kommunikatsii. – 2015. № 67. (In English).

12. Razrabotka i vnedrenie sistemy obnaruzheniya DDoS-atak Interneta veshchei, osnovannoi na mashinnom obuchenii / YU.V. Chen i dr. // V materialakh Evropeiskoi konferentsii IEEE po setyam i kommunikatsiyam, Dubrovnik, Khorvatiya, 15-18 iyunya 2020. – S. 122-127. (In English).

13. Obnaruzhenie atak tipa «otkaz v obsluzhivaniI» i smyagchenie ikh posledstvii dlya Interneta veshchei s ispol'zovaniem metodov mashinnogo obucheniya s podderzhkoi retrospektivnogo analiza / A. Mikhub i dr. // Vychisl. Ehlektr. Angl. – 2022. № 98. R. 107716. (In English).