Generalized Amplification Factor Model for DDoS Attacks with Network Dynamics
摘要
Distributed Denial of Service (DDoS) amplification attacks pose a significant challenge, exploiting protocol vulnerabilities to overwhelm networks with excessive traffic. Conventional Amplification Factor (AF) models often fall short as they do not account for dynamic network conditions such as latency, routing paths, or the response of mitigation mechanisms. This study proposes a more comprehensive AF that incorporates these factors, validated through simulations conducted using GNS3, VMware, and Cisco 7200 routers across protocols like TFTP, DNS, and NTP. We focus on TFTP as a primary example to demonstrate the model’s applicability. Our findings, derived from simulated scenarios, offer practical insights for strengthening network resilience against evolving DDoS threats, contributing meaningfully to the field of cybersecurity.