Veronika Durcekova, Ladislav Schwartz, N. Shahmehri
{"title":"针对应用层的复杂拒绝服务攻击","authors":"Veronika Durcekova, Ladislav Schwartz, N. Shahmehri","doi":"10.1109/ELEKTRO.2012.6225571","DOIUrl":null,"url":null,"abstract":"Popularity of application services offered by Internet has grown a lot in recent years. Basically, Internet was built with the focus on its functionality and not with the focus on the security tasks. This has led to discovering embedded weaknesses in Internet architecture, which can be misused by attackers with malicious purposes. This paper focuses on application layer Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks detection, because these attacks present a continuous critical threat to the Internet services. DDoS attacks are typically carried out at the network layer. However, there is evidence to suggest that application layer DDoS attacks can be more effective than the traditional ones. Over some period of time, researchers proposed many solutions to prevent the DoS/DDoS attacks from different OSI layers, but there has been done only a very small research on application layer. In this paper, we consider sophisticated attacks that utilize legitimate application layer requests from legitimately connected network machines to overwhelm Web server. Since the attack signature of each application layer DDoS is represented in abnormal user behavior, we propose several mechanisms, which can be used for application DoS/DDoS attack detection.","PeriodicalId":343071,"journal":{"name":"2012 ELEKTRO","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-05-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"67","resultStr":"{\"title\":\"Sophisticated Denial of Service attacks aimed at application layer\",\"authors\":\"Veronika Durcekova, Ladislav Schwartz, N. Shahmehri\",\"doi\":\"10.1109/ELEKTRO.2012.6225571\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Popularity of application services offered by Internet has grown a lot in recent years. Basically, Internet was built with the focus on its functionality and not with the focus on the security tasks. This has led to discovering embedded weaknesses in Internet architecture, which can be misused by attackers with malicious purposes. This paper focuses on application layer Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks detection, because these attacks present a continuous critical threat to the Internet services. DDoS attacks are typically carried out at the network layer. However, there is evidence to suggest that application layer DDoS attacks can be more effective than the traditional ones. Over some period of time, researchers proposed many solutions to prevent the DoS/DDoS attacks from different OSI layers, but there has been done only a very small research on application layer. In this paper, we consider sophisticated attacks that utilize legitimate application layer requests from legitimately connected network machines to overwhelm Web server. Since the attack signature of each application layer DDoS is represented in abnormal user behavior, we propose several mechanisms, which can be used for application DoS/DDoS attack detection.\",\"PeriodicalId\":343071,\"journal\":{\"name\":\"2012 ELEKTRO\",\"volume\":\"2 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-05-21\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"67\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2012 ELEKTRO\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ELEKTRO.2012.6225571\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 ELEKTRO","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ELEKTRO.2012.6225571","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Sophisticated Denial of Service attacks aimed at application layer
Popularity of application services offered by Internet has grown a lot in recent years. Basically, Internet was built with the focus on its functionality and not with the focus on the security tasks. This has led to discovering embedded weaknesses in Internet architecture, which can be misused by attackers with malicious purposes. This paper focuses on application layer Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks detection, because these attacks present a continuous critical threat to the Internet services. DDoS attacks are typically carried out at the network layer. However, there is evidence to suggest that application layer DDoS attacks can be more effective than the traditional ones. Over some period of time, researchers proposed many solutions to prevent the DoS/DDoS attacks from different OSI layers, but there has been done only a very small research on application layer. In this paper, we consider sophisticated attacks that utilize legitimate application layer requests from legitimately connected network machines to overwhelm Web server. Since the attack signature of each application layer DDoS is represented in abnormal user behavior, we propose several mechanisms, which can be used for application DoS/DDoS attack detection.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
