A detection scheme for flooding attack on application layer based on semantic concept

Lin, Chu‐Hsing; Liu, Jung-Chun; Huang, Shin-Yang; Lee, Chen‐Yu; Chen, Ching-Ru

doi:10.1109/compsym.2010.5685483

Cited by 12 publications

(2 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Lin and Lee, et al [10], proposed a semantic based algorithm based on HTTP protocol and components of PHP dynamic pages. Mudhakar Srivatsa et al [11] introduced a client-transparent approach based on admission control and congestion control to protect Web server from application-layer DoS attacks.…”

Section: Related Workmentioning

confidence: 99%

User Activity Based Application-Layer DoS/DDoS Attack Defense Algorithm

Tsien

Gai

2015

AMM

View full text Add to dashboard Cite

In application-layer DoS/DDoS attacks, malicious users attack the victim server by sending lots of legitimate requesting packages, which overwhelm the server bottleneck resources. Normal user’s request thus may not be satisfied. The traditional intrusion detection systems for network-layer cannot effectively identify this attack, and recent researches on this kind of attack are mainly for Web servers. This paper proposed a new defense algorithm based on user activity for topic-based Pub/Sub communication servers in mobile push notification systems. Users consuming system bottleneck resources the most can get high scores and thus are considered overactive. With some resource retaken strategy, overactive users’ connections will be dropped according to system performance level. Therefore, the system can get rid of latent threatens. Experiments indicated that this algorithm can identify normal and abnormal users well.

show abstract

Section: Related Workmentioning

confidence: 99%

User Activity Based Application-Layer DoS/DDoS Attack Defense Algorithm

Tsien

Gai

2015

AMM

View full text Add to dashboard Cite

show abstract

“…The first type affects its computational capacity by consuming the system resources. The second type wastes the bandwidth by downloading large files from the web server repeatedly affecting its communication capability while the third type harms its security by using password guessing attacks and SQL Injections (L i n et al [28]). The flooding attacks against a static web page are generated either from botnet, computer virus or any other open Denial of Service tool (Y a t a g a i, I s o h a r a and S a s a s e [61]).…”

Section: Cloud Computing Securitymentioning

confidence: 99%