Mobile executions of Slow DoS Attacks

Denial of Service attacks are executed to prevent the access to an Internet service by legitimate users. Recently, such attacks evolved to the so called Slow DoS attacks, which are able to reach their goal by using tiny amounts of network bandwidth. In this article we focus on such category of threats: we design an innovative offensive tool, SlowDroid, that may affect multiple protocols requiring minimal resources to the attacker. In virtue of this, the attack can even be executed from a mobile device. We compare the attack with similar already existing tools, measuring the results obtained based on new metrics we introduce, proving that the proposed threat represents a serious menace.

[1]  Cristina Conde,et al.  Detecting denial of service by modelling web-server behaviour , 2013, Comput. Electr. Eng..

[2]  Hassan Artail,et al.  A collaborative defense mechanism against SYN flooding attacks in IP networks , 2008, J. Netw. Comput. Appl..

[3]  Maurizio Aiello,et al.  A similarity based approach for application DoS attacks detection , 2013, 2013 IEEE Symposium on Computers and Communications (ISCC).

[4]  Mun Choon Chan,et al.  Effect of Malicious Synchronization , 2006, ACNS.

[5]  Edward M. Roche,et al.  International Convention for the Peaceful Use of Cyberspace , 2014 .

[6]  Yuting Zhang,et al.  Reduction of quality (RoQ) attacks on Internet end-systems , 2005, Proceedings IEEE 24th Annual Joint Conference of the IEEE Computer and Communications Societies..

[7]  Maurizio Mongelli,et al.  An on-line intrusion detection approach to identify low-rate DoS attacks , 2014, 2014 International Carnahan Conference on Security Technology (ICCST).

[8]  Byung-Chul Kim,et al.  DDoS Analysis Using Correlation Coefficient Based on Kolmogorov Complexity , 2013, GPC.

[9]  Giovanni Chiola,et al.  Slow DoS attacks: definition and categorisation , 2013, Int. J. Trust. Manag. Comput. Commun..

[10]  Maurizio Aiello,et al.  Mobile Botnets Development: Issues and Solutions , 2014 .

[11]  Gabriel Maciá-Fernández,et al.  LoRDAS: A Low-Rate DoS Attack against Application Servers , 2007, CRITIS.

[12]  Maurizio Aiello,et al.  SlowReq: A Weapon for Cyberwarfare Operations. Characteristics, Limits, Performance, Remediations , 2013, SOCO-CISIS-ICEUTE.

[13]  Aleksandar Kuzmanovic,et al.  Low-rate TCP-targeted denial of service attacks and counter strategies , 2006, TNET.