Web Timeouts and Their Implications

Timeouts play a fundamental role in network protocols, controlling numerous aspects of host behavior at different layers of the protocol stack. Previous work has documented a class of Denial of Service (DoS) attacks that leverage timeouts to force a host to preserve state with a bare minimum level of interactivity with the attacker. This paper considers the vulnerability of operational Web servers to such attacks by comparing timeouts implemented in servers with the normal Web activity that informs our understanding as to the necessary length of timeouts. We then use these two results--which generally show that the timeouts in wide use are long relative to normal Web transactions--to devise a framework to augment static timeouts with both measurements of the system and particular policy decisions in times of high load.

[1]  Balachander Krishnamurthy,et al.  PRO-COW: Protocol Compliance on the Web - A Longitudinal Study , 2001, USITS.

[2]  Paul Barford,et al.  A performance evaluation of hyper text transfer protocols , 1999, SIGMETRICS '99.

[3]  KyoungSoo Park,et al.  Connection Conditioning: Architecture-Independent Support for Simple, Robust Servers , 2006, NSDI.

[4]  Larry Peterson,et al.  Defensive programming: using an annotation toolkit to build DoS-resistant software , 2002, OSDI '02.

[5]  Hua Wang,et al.  DHTTP: an efficient and cache-friendly transfer protocol for Web traffic , 2001, Proceedings IEEE INFOCOM 2001. Conference on Computer Communications. Twentieth Annual Joint Conference of the IEEE Computer and Communications Society (Cat. No.01CH37213).

[6]  Seungjoon Lee,et al.  Anycast-aware transport for content delivery networks , 2009, WWW '09.