J
Juan Fernando Balarezo
Researcher at RMIT University
Publications - 4
Citations - 37
Juan Fernando Balarezo is an academic researcher from RMIT University. The author has contributed to research in topics: Botnet & Denial-of-service attack. The author has an hindex of 1, co-authored 4 publications receiving 1 citations.
Papers
More filters
Journal ArticleDOI
Machine Learning in Network Anomaly Detection: A Survey
Song Wang,Juan Fernando Balarezo,Sithamparanathan Kandeepan,Akram Al-Hourani,Karina Gomez Chavez,Benjamin I. P. Rubinstein +5 more
TL;DR: In this article, the authors introduce the challenges of anomaly detection in the traditional network, as well as in the next generation network, and review the implementation of machine learning in the anomaly detection under different network contexts.
Journal ArticleDOI
A survey on DoS/DDoS attacks mathematical modelling for traditional, SDN and virtual networks
Juan Fernando Balarezo,Song Wang,Karina Gomez Chavez,Akram Al-Hourani,Sithamparanathan Kandeepan +4 more
TL;DR: In this article, the authors present a classification approach for existing DoS/DDoS models in different kinds of networks; traditional networks, Software Defined Networks (SDN) and virtual networks.
Proceedings ArticleDOI
Low-rate TCP DDoS Attack Model in the Southbound Channel of Software Defined Networks
Juan Fernando Balarezo,Song Wang,Karina Gomez Chavez,Akram Al-Hourani,Jing Fu,Kandeepan Sithamparanathan +5 more
TL;DR: In this article, the authors proposed a model for low-rate stealthy DDoS attacks, which exploit vulnerabilities in the TCP's re-transmission time out mechanism (RTO), and found that these attacks are able to target the southbound TCP channel, used by OpenFlow and P4 protocol.
Journal ArticleDOI
Dynamics of Botnet Propagation in Software Defined Networks Using Epidemic Models
Juan Fernando Balarezo,Song Wang,Karina Gomez Chavez,Akram Al-Hourani,Sithamparanathan Kandeepan +4 more
TL;DR: In this article, the authors proposed two analytic epidemic models, one for enterprise Software Define Networks (SDN) based on the SEIRS (Susceptible - Exposed - Infected - Recovered) approach, while the second model is designed for service providers' SDN, and it is based on a novel extension of a SEIRs-SEIRS vector-borne approach.