@ARTICLE{7934441, 
author={B. Rashidi and C. Fung and E. Bertino}, 
journal={IEEE Transactions on Information Forensics and Security}, 
title={A Collaborative DDoS Defence Framework Using Network Function Virtualization}, 
year={2017}, 
volume={12}, 
number={10}, 
pages={2483-2497}, 
abstract={High-profile and often destructive distributed denial of service (DDoS) attacks continue to be one of the top security concerns as the DDoS attacks volumes are increasing constantly. Among them, the SYN Flood attack is the most common type. Conventional DDoS defense solutions may not be preferable, since they demand highly capable hardware resources, which induce high cost and long deployment cycle. The emerging of network function virtualization (NFV) technology introduces new opportunities to decrease the amount of proprietary hardware that is needed to launch and operate network services. In this paper, we propose a DDoS defense mechanism named CoFence, which facilitates a ?domain-helps-domain? collaboration network among NFV-based domain networks. CoFence allows domain networks to help each other in handling large volume of DDoS attacks through resource sharing. Specifically, we design a dynamic resource allocation mechanism for domains so that the resource allocation is fair, efficient, and incentive-compatible. The resource sharing mechanism is modeled as a multi-leader-follower Stackelberg game. In this game, all domains have a degree of control to maximize their own utility. The resource supplier domains determine the amount of resource to each requesting peer based on optimizing a reciprocal-based utility function. On the other hand, the resource requesting domains decide the level of demand to send to the resource supplier domains in order to reach sufficient support. Our simulation results demonstrate that the designed resource allocation game is effective, incentive compatible, fair, and reciprocal under its Nash equilibrium.}, 
keywords={computer network security;game theory;groupware;resource allocation;virtualisation;CoFence;DDoS attacks;DDoS defense solutions;NFV;Nash equilibrium;SYN flood attack;collaborative DDoS defence framework;distributed denial of service attack;domain-helps-domain collaboration network;dynamic resource allocation;multileader-follower Stackelberg game;network function virtualization;network services;reciprocal-based utility function;resource requesting domains;resource sharing;resource supplier domains;Computer crime;Games;Hardware;IP networks;Network function virtualization;Resource management;Servers;DDoS;Software defined networking;collaborative network;network function virtualization}, 
doi={10.1109/TIFS.2017.2708693}, 
ISSN={1556-6013}, 
month={Oct},}