A Novel Protective Framework for Defeating HTTP‐Based Denial of Service and Distributed Denial of Service Attacks

Manaf, Azizah Abdul

doi:10.1155/2015/238230

Cited by 34 publications

(15 citation statements)

References 53 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Saleh et al [53] propose a framework composed of (1) an Outer attack Blocking (OB) at the edge router; (2) a Service Traceback Oriented Architecture (STBOA); (3) and a flexible advanced entropy based (FAEB) layer. From a blacklist database table (IP source), the OB layer blocks or forwards the incoming request.…”

Section: Defenses Against Xml-dos and Http-dos Attacksmentioning

confidence: 99%

See 1 more Smart Citation

A Survey of Denial-of-Service and Distributed Denial of Service Attacks and Defenses in Cloud Computing

Bonguet

Bellaïche

2017

Future Internet

View full text Add to dashboard Cite

Cloud Computing is a computing model that allows ubiquitous, convenient and on-demand access to a shared pool of highly configurable resources (e.g., networks, servers, storage, applications and services). Denial-of-Service (DoS) and Distributed Denial-of-Service (DDoS) attacks are serious threats to the Cloud services' availability due to numerous new vulnerabilities introduced by the nature of the Cloud, such as multi-tenancy and resource sharing. In this paper, new types of DoS and DDoS attacks in Cloud Computing are explored, especially the XML-DoS and HTTP-DoS attacks, and some possible detection and mitigation techniques are examined. This survey also provides an overview of the existing defense solutions and investigates the experiments and metrics that are usually designed and used to evaluate their performance, which is helpful for the future research in the domain.

show abstract

Section: Defenses Against Xml-dos and Http-dos Attacksmentioning

confidence: 99%

“…Saleh et al [53] conducted four experiments. First, they evaluated how the framework could protect against flash crowd attacks, then against high rate DDoS attacks.…”

Section: Testbedmentioning

confidence: 99%

A Survey of Denial-of-Service and Distributed Denial of Service Attacks and Defenses in Cloud Computing

Bonguet

Bellaïche

2017

Future Internet

View full text Add to dashboard Cite

show abstract

“…A complete framework includes the detection, characterization, trace back and mitigation module in it .In some recent work of [18] proposed an FCMDPF (flexible, collaborative, multilayer, DDoS prevention framework). This framework mitigates the DDoS attacks using three layered architecture.…”

Section: Related Workmentioning

confidence: 99%

Destination Address Entropy based Detection and Traceback Approach against Distributed Denial of Service Attacks

Bhandari¹,

Sangal²,

Kumar³

2015

IJCNIS

View full text Add to dashboard Cite

Abstract-With all the brisk growth of web, distributed denial of service attacks are becoming the most serious issues in a data center scenarios where lot many servers are deployed. A Distributed Denial of Service attack generates substantial packets by a large number of agents and can easily tire out the processing and communication resources of a victim within very less period of time. Defending DDoS problem involved several steps from detection, characterization and trace back in order todomitigation. The contribution of this research paper is a lot more. Firstly, flooding based DDoS problems is detected using obtained packets based entropy approach in a data center scenario. Secondly entropy based trace back method is applied to find the edge routers from where the whole attack traffic is entering into the ISP domain of the data center. Various simulation scenarios using NS2 are depicted in order to validate the proposed method using GT-ITM primarily based topology generators. Information theory based metrics like entropy; average entropy and differential entropy are used for this purpose.

show abstract

“…The use of application program interfaces (APIs) provide high level of interoperability between different kinds of infrastructure, platform and software components. The most popular protocols [5], [6] for data communication over the web [7], [14] are HTTP and HTTPS. There are large number of APIs available now.…”

Section: Introductionmentioning

confidence: 99%

“…They are integrating the various elements of cloud. Flooding DDOS [2][3][4][5] attack is very common type of attack in the cloud environment. It has severe effect on an enterprise and its reputation hence there is dire need to ensure the security of IT resources to protect from DDOS attacks [27].…”

Section: Introductionmentioning

confidence: 99%

Slow flooding attack detection in cloud using change point detection approach

Singh¹,

Panda²,

Samra³

2018

IJET

View full text Add to dashboard Cite

Cloud computing is one of the high-demand services and prone to numerous types of attacks due to its Internet based backbone. Flooding based attack is one such type of attack over the cloud that exhausts the numerous resources and services of an individual or an enterprise by way of sending useless huge traffic. The nature of this traffic may be of slow or fast type. Flooding attacks are caused by way of sending massive volume of packets of TCP, UDP, ICMP traffic and HTTP Posts. The legitimate volume of traffic is suppressed and lost in traffic flooding traffics. Early detection of such attacks helps in minimization of the unauthorized utilization of resources on the target machine. Various inbuilt load balancing and scalability options to absorb flooding attacks are in use by cloud service providers up to ample extent still to maintain QoS at the same time by cloud service providers is a challenge. In this proposed technique. Change Point detection approach is proposed here to detect flooding DDOS attacks in cloud which are based on the continuous variant pattern of voluminous (flooding) traffic and is calculated by using various traffic data based metrics that are primary and computed in nature. Golden ration is used to compute the threshold and this threshold is further used along with the computed metric values of normal and malicious traffic for flooding attack detection. Traffic of websites is observed by using remote java script.

show abstract

A Novel Protective Framework for Defeating HTTP‐Based Denial of Service and Distributed Denial of Service Attacks

Cited by 34 publications

References 53 publications

A Survey of Denial-of-Service and Distributed Denial of Service Attacks and Defenses in Cloud Computing

A Survey of Denial-of-Service and Distributed Denial of Service Attacks and Defenses in Cloud Computing

Destination Address Entropy based Detection and Traceback Approach against Distributed Denial of Service Attacks

Slow flooding attack detection in cloud using change point detection approach

Contact Info

Product

Resources

About