University of Hertfordshire

By the same authors

Distributed SIP DDoS Defense with P4

Research output: Chapter in Book/Report/Conference proceedingConference contribution


View graph of relations
Original languageEnglish
Title of host publication2019 IEEE Wireless Communications and Networking Conference (WCNC)
Subtitle of host publicationProceedings
Number of pages8
ISBN (Electronic)9781538676462
ISBN (Print)9781538676479
Publication statusPublished - 31 Oct 2019
Event2019 IEEE Wireless Communications and Networking Conference, WCNC 2019 - Marrakesh, Morocco
Duration: 15 Apr 201919 Apr 2019


Conference2019 IEEE Wireless Communications and Networking Conference, WCNC 2019


SIP DDoS attack is growing and has a real threat to crippling public communication infrastructure. The standard approach to building the defense is at or near the attack destination (i.e. victim’s location). This approach is struggling to keep up with the growing volume and attack sophistication. To be better prepared for future attacks, the workload needs to be distributed, and the attack needs to be mitigated as close to the attack source as possible. This paper experiments with data plane programming (P4) and control plane programming of Ethernet switches to provide first-hop detection and mitigation capability for SIP INVITE DDoS attack at every switch port. This approachcreates a distributed or source-based defense component which could be added to the existing destination-based components to create a more comprehensive overall solution that is extensible, economical, and scalable against SIP DDoS attack of the future.


© 2019 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.

ID: 16146017