Towards Mitigation of Low and Slow Application DDoS Attacks

被引：36

作者：

Shtern, Mark ^{[1
]}

Sandel, Roni ^{[1
]}

Litoiu, Marin ^{[1
]}

Bachalo, Chris ^{[2
]}

Theodorou, Vasileios ^{[3
]}

机构：

[1] York Univ, Toronto, ON M3J 2R7, Canada

[2] Juniper Networks, Ottawa, ON, Canada

[3] Univ Politecn Cataluna, Barcelona, Spain

来源：

2014 IEEE INTERNATIONAL CONFERENCE ON CLOUD ENGINEERING (IC2E) | 2014年

关键词：

Software Defined Network; Low and Slow Distributed Denial of Service (LSDDoS); Application Layer; Cloud;

D O I：

10.1109/IC2E.2014.38

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Distributed Denial of Service attacks are a growing threat to organizations and, as defense mechanisms are becoming more advanced, hackers are aiming at the application layer. For example, application layer Low and Slow Distributed Denial of Service attacks are becoming a serious issue because, due to low resource consumption, they are hard to detect. In this position paper, we propose a reference architecture that mitigates the Low and Slow Distributed Denial of Service attacks by utilizing Software Defined Infrastructure capabilities. We also propose two concrete architectures based on the reference architecture: a Performance Model-Based and Off-The-Shelf Components based architecture, respectively. We introduce the Shark Tank concept, a cluster under detailed monitoring that has full application capabilities and where suspicious requests are redirected for further filtering.

引用

页码：604 / 609

页数：6

共 50 条

[1] THE SLOW HTTP DDOS ATTACKS: DETECTION, MITIGATION AND PREVENTION IN THE CLOUD ENVIRONMENT
Dhanapal, A.
Nithyanandam, P.
SCALABLE COMPUTING-PRACTICE AND EXPERIENCE, 2019, 20 (04): : 669 - 685
[2] Mitigation of DDoS attacks in Software Defined Networks at application level
Sanjeetha, R.
Benoor, Pallavi
Kanavalli, Anita
2019 PHD COLLOQUIUM ON ETHICALLY DRIVEN INNOVATION AND TECHNOLOGY FOR SOCIETY (PHD EDITS), 2019,
[3] SDN-Assisted Network-Based Mitigation of Slow DDoS Attacks
Lukaseder, Thomas
Maile, Lisa
Erb, Benjamin
Kargl, Frank
SECURITY AND PRIVACY IN COMMUNICATION NETWORKS, SECURECOMM 2018, PT II, 2018, 255 : 102 - 121
[4] Mitigation of DDoS Attacks in Cloud Computing
Daffu, Preeti
Kaur, Amanpreet
2016 5TH INTERNATIONAL CONFERENCE ON WIRELESS NETWORKS AND EMBEDDED SYSTEMS (WECON), 2016, : 209 - 213
[5] Towards Remediating DDoS Attacks
Lavrenovs, Arturs
PROCEEDINGS OF THE 16TH INTERNATIONAL CONFERENCE ON CYBER WARFARE AND SECURITY (ICCWS 2021), 2021, : 152 - 158
[6] Towards Defeating DDoS Attacks
Doyal, Alex
Zhan, Justin
Yu, Huiming Anna
2012 ASE INTERNATIONAL CONFERENCE ON CYBER SECURITY (CYBERSECURITY), 2012, : 209 - 212
[7] MITIGATION OF APPLICATION DDoS ATTACKS USING ASNRI SCHEME FOR IP AND MAC FRAMES
Prabha, S.
Anitha, R.
2013 INTERNATIONAL CONFERENCE ON PATTERN RECOGNITION, INFORMATICS AND MEDICAL ENGINEERING (PRIME), 2013,
[8] A SECURED AND ENHANCED MITIGATION FRAMEWORK FOR DDOS ATTACKS
Shah, Mujahid
Khattak, ShahbazQadar
Farooq, Muhammad
Jan, Sadeeq
Qureshi, MehtabEjaz
Jan, Naveed
Ahmed, Sheeraz
JOURNAL OF MECHANICS OF CONTINUA AND MATHEMATICAL SCIENCES, 2019, 14 (06): : 985 - 1004
[9] Towards Inference of DDoS Mitigation Rules
Zadnik, Martin
PROCEEDINGS OF THE IEEE/IFIP NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM 2022, 2022,
[10] Future of DDoS Attacks Mitigation in Software Defined Networks
Vizvary, Martin
Vykopal, Jan
MONITORING AND SECURING VIRTUALIZED NETWORKS AND SERVICES, 2014, 8508 : 123 - 127

← 1 2 3 4 5 →