Towards Mitigation of Low and Slow Application DDoS Attacks

被引:36
|
作者
Shtern, Mark [1 ]
Sandel, Roni [1 ]
Litoiu, Marin [1 ]
Bachalo, Chris [2 ]
Theodorou, Vasileios [3 ]
机构
[1] York Univ, Toronto, ON M3J 2R7, Canada
[2] Juniper Networks, Ottawa, ON, Canada
[3] Univ Politecn Cataluna, Barcelona, Spain
来源
2014 IEEE INTERNATIONAL CONFERENCE ON CLOUD ENGINEERING (IC2E) | 2014年
关键词
Software Defined Network; Low and Slow Distributed Denial of Service (LSDDoS); Application Layer; Cloud;
D O I
10.1109/IC2E.2014.38
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Distributed Denial of Service attacks are a growing threat to organizations and, as defense mechanisms are becoming more advanced, hackers are aiming at the application layer. For example, application layer Low and Slow Distributed Denial of Service attacks are becoming a serious issue because, due to low resource consumption, they are hard to detect. In this position paper, we propose a reference architecture that mitigates the Low and Slow Distributed Denial of Service attacks by utilizing Software Defined Infrastructure capabilities. We also propose two concrete architectures based on the reference architecture: a Performance Model-Based and Off-The-Shelf Components based architecture, respectively. We introduce the Shark Tank concept, a cluster under detailed monitoring that has full application capabilities and where suspicious requests are redirected for further filtering.
引用
收藏
页码:604 / 609
页数:6
相关论文
共 50 条
  • [41] Review on Mitigation of Distributed Denial of Service (DDoS) Attacks in Cloud Computing
    Khadke, Ashwini
    Madankar, Mangala
    Motghare, Manish
    PROCEEDINGS OF THE 10TH INTERNATIONAL CONFERENCE ON INTELLIGENT SYSTEMS AND CONTROL (ISCO'16), 2016,
  • [42] Analysis of the Impact of the Slow HTTP DOS and DDOS Attacks on the Cloud Environment
    Yevsieieva, Oksana
    Helalat, Seyed Milad
    2017 4TH INTERNATIONAL SCIENTIFIC-PRACTICAL CONFERENCE PROBLEMS OF INFOCOMMUNICATIONS-SCIENCE AND TECHNOLOGY (PIC S&T), 2017, : 519 - 523
  • [43] On Detection and Mitigation of Slow Rate Denial of Service Attacks
    Sikora, Marek
    Gerlich, Tomas
    Malina, Lukas
    2019 11TH INTERNATIONAL CONGRESS ON ULTRA MODERN TELECOMMUNICATIONS AND CONTROL SYSTEMS AND WORKSHOPS (ICUMT), 2019,
  • [44] Towards improving an algebraic marking scheme for tracing DDoS attacks
    Lee, Moon-Chuen
    He, Yi-Jun
    Chen, Zhaole
    International Journal of Network Security, 2009, 9 (03) : 204 - 213
  • [45] A Novel Approach Towards Analysis of Attacker Behavior in DDoS Attacks
    Gupta, Himanshu
    Kulkarni, Tanmay Girish
    Kumar, Lov
    Murthy, Neti Lalita Bhanu
    MACHINE LEARNING FOR NETWORKING (MLN 2019), 2020, 12081 : 392 - 402
  • [46] Towards Detection of DDoS Attacks in IoT with Optimal Features Selection
    Kumari, Pooja
    Jain, Ankit Kumar
    Pal, Yash
    Singh, Kuldeep
    Singh, Anubhav
    WIRELESS PERSONAL COMMUNICATIONS, 2024, 137 (02) : 951 - 976
  • [47] A Lightweight Mechanism to Mitigate Application Layer DDoS Attacks
    Yu, Jie
    Fang, Chengfang
    Lu, Liming
    Li, Zhoujun
    SCALABLE INFORMATION SYSTEMS, 2009, 18 : 175 - +
  • [48] An Overview on Detection and Prevention of Application Layer DDoS Attacks
    Black, Samuel
    Kim, Yoohwan
    2022 IEEE 12TH ANNUAL COMPUTING AND COMMUNICATION WORKSHOP AND CONFERENCE (CCWC), 2022, : 791 - 800
  • [49] A Novel Approach for Countering Application Layer DDoS Attacks
    Wang, Yadong
    Liu, Lianzhong
    Si, Chengxiang
    Sun, Bo
    2017 IEEE 2ND ADVANCED INFORMATION TECHNOLOGY, ELECTRONIC AND AUTOMATION CONTROL CONFERENCE (IAEAC), 2017, : 1814 - 1817
  • [50] An Effective Approach to Counter Application Layer DDoS Attacks
    Devi, S. Renuka
    Yogesh, P.
    2012 THIRD INTERNATIONAL CONFERENCE ON COMPUTING COMMUNICATION & NETWORKING TECHNOLOGIES (ICCCNT), 2012,
12345