Design and Development of Proactive Solutions for Mitigating Denial-of-Service Attacks

2006 International Conference on Advanced Computing and Communications Pub Date : 2006-12-01 DOI:10.1109/ADCOM.2006.4289874

H. Nagesh, K. Sekaran

{"title":"Design and Development of Proactive Solutions for Mitigating Denial-of-Service Attacks","authors":"H. Nagesh, K. Sekaran","doi":"10.1109/ADCOM.2006.4289874","DOIUrl":null,"url":null,"abstract":"Denial of Service attacks, orchestrated by a single host or multiple hosts in a coordinated manner, has become an increasingly frequent disturbance in today's Internet. Generally, attackers launch DDoS attacks by directing a massive number of attack sources to send useless traffic to the victim. The victim's services are disrupted when its host or network resources are occupied by the attack traffic. The threat of DDoS attacks has become even more severe as attackers can compromise a huge number of computers using vulnerabilities in popular operating systems.This paper deals with Denial of service (DoS) and Distributed DoS (DDoS) attacks. In the first part, we categorize existing defense mechanisms, and analyze their strengths and weaknesses. In the second part of our investigation, we develop and evaluate two defense models for DoS attacks: the Secure Overlay Services (SOS) Model and the Server Hopping Model using distributed firewalls. Each of these models provide defense in a different part of the network, and has different resource requirements. In the third part of our investigation, we assess the effectiveness of our defense models for different types of DoS attack.","PeriodicalId":296627,"journal":{"name":"2006 International Conference on Advanced Computing and Communications","volume":"127 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2006-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2006 International Conference on Advanced Computing and Communications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ADCOM.2006.4289874","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

Denial of Service attacks, orchestrated by a single host or multiple hosts in a coordinated manner, has become an increasingly frequent disturbance in today's Internet. Generally, attackers launch DDoS attacks by directing a massive number of attack sources to send useless traffic to the victim. The victim's services are disrupted when its host or network resources are occupied by the attack traffic. The threat of DDoS attacks has become even more severe as attackers can compromise a huge number of computers using vulnerabilities in popular operating systems.This paper deals with Denial of service (DoS) and Distributed DoS (DDoS) attacks. In the first part, we categorize existing defense mechanisms, and analyze their strengths and weaknesses. In the second part of our investigation, we develop and evaluate two defense models for DoS attacks: the Secure Overlay Services (SOS) Model and the Server Hopping Model using distributed firewalls. Each of these models provide defense in a different part of the network, and has different resource requirements. In the third part of our investigation, we assess the effectiveness of our defense models for different types of DoS attack.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

减少拒绝服务攻击的主动解决方案的设计和开发

拒绝服务攻击是由单个主机或多个主机以协调的方式精心策划的，已成为当今互联网中日益频繁的干扰。通常情况下，攻击者通过引导大量的攻击源向目标发送无用的流量来进行DDoS攻击。当攻击流量占用被害者的主机或网络资源时，被害者的业务将中断。DDoS攻击的威胁变得更加严重，因为攻击者可以利用流行操作系统中的漏洞危害大量计算机。本文研究了拒绝服务攻击和分布式拒绝服务攻击。在第一部分中，我们对现有的防御机制进行了分类，并分析了其优缺点。在我们调查的第二部分，我们开发和评估了DoS攻击的两种防御模型:安全覆盖服务(SOS)模型和使用分布式防火墙的服务器跳转模型。每种模型都在网络的不同部分提供防御，并且具有不同的资源需求。在调查的第三部分中，我们评估了针对不同类型DoS攻击的防御模型的有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2006 International Conference on Advanced Computing and Communications

自引率

0.00%

发文量