论文信息 - On the Design of a Low-Rate DoS Attack Against Iterative Servers

On the Design of a Low-Rate DoS Attack Against Iterative Servers

Recent research exposes the vulnerability of current networked applications to a family of low-rate DoS attacks based on timing mechanisms. A kind of those attacks is targeted against iterative servers and employs an ON/OFF scheme to send attack packets during the chosen critical periods. The overall behaviour of the attack is well known and its effectiveness has been demonstrated in previous works. Nevertheless, it is possible to achieve a trade off between the performance of the attack and its detectability. This can be done by tuning some parameters of the attack waveform according to the needs of the attacker and the deployed detection mechanisms. In this paper, a mathematical model for the relationship among those parameters and their impact in the performance of the attack is evaluated. The main goal of the model is to provide a better understanding of the dynamics of the attack, which is explored through simulation. The results obtained point out the model as accurate, thus providing a framework feasible to be used to tune the attack.

Gabriel Maciá-Fernández | Jesús E. Díaz-Verdejo | Pedro García-Teodoro

[1] Gabriel Maciá-Fernández,et al. Evaluation of a low-rate DoS attack against iterative servers , 2007, Comput. Networks.

[2] Aikaterini Mitrokotsa,et al. DDoS attacks and defense mechanisms: classification and state-of-the-art , 2004, Comput. Networks.

[3] Linda Pesante,et al. CERT® Coordination Center , 2002 .

[4] Paul Ferguson,et al. Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing , 1998, RFC.

[5] Stefan Axelsson,et al. Intrusion Detection Systems: A Survey and Taxonomy , 2002 .

[6] David K. Y. Yau,et al. Defending against low-rate TCP attacks: dynamic detection and protection , 2004, Proceedings of the 12th IEEE International Conference on Network Protocols, 2004. ICNP 2004..

[7] Andrew B. Whinston,et al. Defeating distributed denial of service attacks , 2000 .

[8] Nathalie Weiler,et al. Honeypots for distributed denial-of-service attacks , 2002, Proceedings. Eleventh IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises.

[9] M. Williams,et al. Ebay, amazon, buy. com hit by attacks , 2000 .

[10] Nirwan Ansari,et al. Low rate TCP denial-of-service attack detection at edge routers , 2005, IEEE Communications Letters.

[11] Gabriel Maciá-Fernández,et al. Low Rate DoS Attack to Monoprocess Servers , 2006, SPC.