Countermeasures on application level low-rate denial-of-service attack

Authors:
Yajuan Tang
Affiliations:
Department of Electronic Engineering, Shantou University, China
Venue:
ICICS'12 Proceedings of the 14th international conference on Information and Communications Security
Year:
2012

Citing 14
Cited 0

Analysis and design of an adaptive virtual queue (AVQ) algorithm for active queue management

Proceedings of the 2001 conference on Applications, technologies, architectures, and protocols for computer communications
Evidence for long-tailed distributions in the internet

IMW '01 Proceedings of the 1st ACM SIGCOMM Workshop on Internet Measurement
Low-rate TCP-targeted denial of service attacks: the shrew vs. the mice and elephants

Proceedings of the 2003 conference on Applications, technologies, architectures, and protocols for computer communications
Exploiting the Transients of Adaptation for RoQ Attacks on Internet Resources

ICNP '04 Proceedings of the 12th IEEE International Conference on Network Protocols
Defending Against Low-Rate TCP Attacks: Dynamic Detection and Protection

ICNP '04 Proceedings of the 12th IEEE International Conference on Network Protocols
Low-rate TCP-targeted denial of service attacks and counter strategies

IEEE/ACM Transactions on Networking (TON)
Collaborative detection and filtering of shrew DDoS attacks using spectral analysis

Journal of Parallel and Distributed Computing - Special issue: Security in grid and distributed systems
DDoS-shield: DDoS-resilient scheduling to counter application layer attacks

IEEE/ACM Transactions on Networking (TON)
A large-scale hidden semi-Markov model for anomaly detection on user browsing behaviors

IEEE/ACM Transactions on Networking (TON)
Defense techniques for low-rate DoS attacks against application servers

Computer Networks: The International Journal of Computer and Telecommunications Networking
LoRDAS: a low-rate dos attack against application servers

CRITIS'07 Proceedings of the Second international conference on Critical Information Infrastructures Security
A novel approach to detection of intrusions in computer networks via adaptive sequential and batch-sequential change-point detection methods

IEEE Transactions on Signal Processing
The taming of the shrew: mitigating low-rate TCP-targeted attack

IEEE Transactions on Network and Service Management
Low-Rate DDoS Attacks Detection and Traceback by Using New Information Metrics

IEEE Transactions on Information Forensics and Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Low-Rate Denial-of-Service (LRDoS) attack is an emerging threat to Internet because it can evade detection and defense schemes for flooding based attacks. LRDoS attack at application level is particularly difficult to counteract as it mimics legitimate client. Although there are several approaches proposed to mitigate LRDoS attacks, they are limited to particular protocols, target systems, or attack patterns that they are not able to detect this threat at application level. In this paper, we propose a nonparametric detection algorithm and a hybrid defense system to mitigate LRDoS attacks at application level. Our extensive experiments have confirmed the effectiveness of the detection and defense system.