An Effective Detection of Flooding Attacks using Decoy Hyperlinks

The Denial of Service (DoS) attack is an explicit attempt by a single or group of users (Attackers) to block the resources a victim system. The victim system may be either individual system or server. Flooding attacks under the DoS are dangerous threats to the internet users. In this paper we present r a method for detecting Denial of Service attacks (DoS) i.e. flooding attacks on web services are presented and evaluated by using decoy hyperlinks embedded in web pages. Here flooding attacks are generated in three ways such as direct, spoofing and distributed direct attacks. The flooding attacks can be detected when it is distinguished from normal user patterns by inserting decoy hyperlinks into some key pages in the Website. The flooding attacks are detected by using simple threshold techniques. The Decoys are hyperlinks without semantic information or are invisible to the human user. This approach has significant advantages over other approaches like graphic Turing tests, it is transparent to the user, it can be used on general-purpose web sites and retains the web site’s usability.