Musab A. Alturki scite author profile

Abstract. Availability is an important security property for Internet services and a key ingredient of most service level agreements. It can be compromised by distributed Denial of Service (DoS) attacks. In this work we propose a formal pattern-based approach to study defense mechanisms against DoS attacks. We enhance pattern descriptions with formal models that allow the designer to give guarantees on the behavior of the proposed solution. The underlying executable specification formalism we use is the rewriting logic language Maude and its real-time and probabilistic extensions. We introduce the notion of stable availability, which means that with very high probability service quality remains very close to a threshold, regardless of how bad the DoS attack can get. Then we present two formal patterns which can serve as defenses against DoS attacks: the Adaptive Selective Verification (ASV) pattern, which enhances a communication protocol with a defense mechanism, and the Server Replicator (SR) pattern, which provisions additional resources on demand. However, ASV achieves availability without stability, and SR cannot achieve stable availability at a reasonable cost. As a main result we show, by statistical model checking with the PVeStA tool, that the composition of both patterns yields a new improved pattern which guarantees stable availability at a reasonable cost.

show abstract

Probabilistic Modeling and Analysis of DoS Protection for the ASV Protocol

Alturki

Meseguer

Gunter

2009

Electronic Notes in Theoretical Computer Science

View full text Add to dashboard Cite

Reduction Semantics and Formal Analysis of Orc Programs

Alturki

Meseguer

2008

Electronic Notes in Theoretical Computer Science

View full text Add to dashboard Cite

Real-time rewriting semantics of orc

Alturki

Meseguer

2007

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Musab A. Alturki

PVeStA: A Parallel Statistical Model Checking and Quantitative Analysis Tool

Stable Availability under Denial of Service Attacks through Formal Patterns

Probabilistic Modeling and Analysis of DoS Protection for the ASV Protocol

Reduction Semantics and Formal Analysis of Orc Programs

Real-time rewriting semantics of orc

Contact Info

Product

Resources

About