A cost-effective adaptive repair strategy to mitigate DDoS-capable IoT botnets.
Distributed denial of service (DDoS) is a type of cyberattack in which multiple compromised systems flood the bandwidth or resources of a single system, making the flooded system inaccessible to legitimate users. Since large-scale botnets based on the Internet of Things (IoT) have been hotbeds for l...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Public Library of Science (PLoS)
2024-01-01
|
| Series: | PLoS ONE |
| Online Access: | https://doi.org/10.1371/journal.pone.0301888 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841555505687822336 |
|---|---|
| author | Jiamin Hu Xiaofan Yang |
| author_facet | Jiamin Hu Xiaofan Yang |
| author_sort | Jiamin Hu |
| collection | DOAJ |
| description | Distributed denial of service (DDoS) is a type of cyberattack in which multiple compromised systems flood the bandwidth or resources of a single system, making the flooded system inaccessible to legitimate users. Since large-scale botnets based on the Internet of Things (IoT) have been hotbeds for launching DDoS attacks, it is crucial to defend against DDoS-capable IoT botnets effectively. In consideration of resource constraints and frequent state changes for IoT devices, they should be equipped with repair measures that are cost-effective and adaptive to mitigate the impact of DDoS attacks. From the mitigation perspective, we refer to the collection of repair costs at all times as a repair strategy. This paper is then devoted to studying the problem of developing a cost-effective and adaptive repair strategy (ARS). First, we establish an IoT botware propagation model that fully captures the state evolution of an IoT network under attack and defense interventions. On this basis, we model the ARS problem as a data-driven optimal control problem, aiming to realize both learning and prediction of propagation parameters based on network traffic data observed at multiple discrete time slots and control of IoT botware propagation to a desired infection level. By leveraging optimal control theory, we propose an iterative algorithm to solve the problem, numerically obtaining the learned time-varying parameters and a repair strategy. Finally, the performance of the learned parameters and the resulting strategy are examined through computer experiments. |
| format | Article |
| id | doaj-art-12ad7e29396943c3b1757d0b2ac38791 |
| institution | Kabale University |
| issn | 1932-6203 |
| language | English |
| publishDate | 2024-01-01 |
| publisher | Public Library of Science (PLoS) |
| record_format | Article |
| series | PLoS ONE |
| spelling | doaj-art-12ad7e29396943c3b1757d0b2ac387912025-01-08T05:32:31ZengPublic Library of Science (PLoS)PLoS ONE1932-62032024-01-011912e030188810.1371/journal.pone.0301888A cost-effective adaptive repair strategy to mitigate DDoS-capable IoT botnets.Jiamin HuXiaofan YangDistributed denial of service (DDoS) is a type of cyberattack in which multiple compromised systems flood the bandwidth or resources of a single system, making the flooded system inaccessible to legitimate users. Since large-scale botnets based on the Internet of Things (IoT) have been hotbeds for launching DDoS attacks, it is crucial to defend against DDoS-capable IoT botnets effectively. In consideration of resource constraints and frequent state changes for IoT devices, they should be equipped with repair measures that are cost-effective and adaptive to mitigate the impact of DDoS attacks. From the mitigation perspective, we refer to the collection of repair costs at all times as a repair strategy. This paper is then devoted to studying the problem of developing a cost-effective and adaptive repair strategy (ARS). First, we establish an IoT botware propagation model that fully captures the state evolution of an IoT network under attack and defense interventions. On this basis, we model the ARS problem as a data-driven optimal control problem, aiming to realize both learning and prediction of propagation parameters based on network traffic data observed at multiple discrete time slots and control of IoT botware propagation to a desired infection level. By leveraging optimal control theory, we propose an iterative algorithm to solve the problem, numerically obtaining the learned time-varying parameters and a repair strategy. Finally, the performance of the learned parameters and the resulting strategy are examined through computer experiments.https://doi.org/10.1371/journal.pone.0301888 |
| spellingShingle | Jiamin Hu Xiaofan Yang A cost-effective adaptive repair strategy to mitigate DDoS-capable IoT botnets. PLoS ONE |
| title | A cost-effective adaptive repair strategy to mitigate DDoS-capable IoT botnets. |
| title_full | A cost-effective adaptive repair strategy to mitigate DDoS-capable IoT botnets. |
| title_fullStr | A cost-effective adaptive repair strategy to mitigate DDoS-capable IoT botnets. |
| title_full_unstemmed | A cost-effective adaptive repair strategy to mitigate DDoS-capable IoT botnets. |
| title_short | A cost-effective adaptive repair strategy to mitigate DDoS-capable IoT botnets. |
| title_sort | cost effective adaptive repair strategy to mitigate ddos capable iot botnets |
| url | https://doi.org/10.1371/journal.pone.0301888 |
| work_keys_str_mv | AT jiaminhu acosteffectiveadaptiverepairstrategytomitigateddoscapableiotbotnets AT xiaofanyang acosteffectiveadaptiverepairstrategytomitigateddoscapableiotbotnets AT jiaminhu costeffectiveadaptiverepairstrategytomitigateddoscapableiotbotnets AT xiaofanyang costeffectiveadaptiverepairstrategytomitigateddoscapableiotbotnets |