How to Test DoS Defenses

Mirković, Jelena; Fahmy, Sonia; Reiher, Peter; Thomas, Roshan K.

doi:10.1109/catch.2009.23

Cited by 27 publications

(9 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…• Simulation: In this method, attackers, targets and network devices are all simulated [6]. NS-2 and Opnet are two examples of network simulators that are used.…”

Section: Testbed Design Strategiesmentioning

confidence: 99%

Towards a Reliable Intrusion Detection Benchmark Dataset

Sharafaldin¹,

Gharib²,

Lashkari³

et al. 2017

JSN

212

100

View full text Add to dashboard Cite

The urgently growing number of security threats on Internet and intranet networks highly demands reliable security solutions. Among various options, Intrusion Detection (IDSs) and Intrusion Prevention Systems (IPSs) are used to defend network infrastructure by detecting and preventing attacks and malicious activities. The performance of a detection system is evaluated using benchmark datasets. There exist a number of datasets, such as DARPA98, KDD99, ISC2012, and ADFA13, that have been used by researchers to evaluate the performance of their intrusion detection and prevention approaches. However, not enough research has focused on the evaluation and assessment of the datasets themselves and there is no reliable dataset in this domain. In this paper, we present a comprehensive evaluation of the existing datasets using our proposed criteria, a design and evaluation framework for IDS and IPS datasets, and a dataset generation model to create a reliable IDS or IPS benchmark dataset.

show abstract

“…• Simulation: In this method, attackers, targets and network devices are all simulated [6]. NS-2 and Opnet are two examples of network simulators that are used.…”

Section: Testbed Design Strategiesmentioning

confidence: 99%

Towards a Reliable Intrusion Detection Benchmark Dataset

Sharafaldin¹,

Gharib²,

Lashkari³

et al. 2017

JSN

212

100

View full text Add to dashboard Cite

show abstract

“…All the sources (including attackers) send 10 requests per second. According to Mirkovic et al [27], we set 4 seconds as the request timeout. DoC Attack.…”

Section: B Bandwidth Guarantees Under Botnet Attacksmentioning

confidence: 99%

SIBRA: Scalable Internet Bandwidth Reservation Architecture

Băsescu

Reischuk

Szałachowski

et al. 2016

Proceedings 2016 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

This paper proposes a Scalable Internet Bandwidth Reservation Architecture (SIBRA) as a new approach against DDoS attacks, which, until now, continue to be a menace on today's Internet. SIBRA provides scalable inter-domain resource allocations and botnet-size independence, an important property to realize why previous defense approaches are insufficient. Botnetsize independence enables two end hosts to set up communication regardless of the size of distributed botnets in any Autonomous System in the Internet. SIBRA thus ends the arms race between DDoS attackers and defenders. Furthermore, SIBRA is based on purely stateless operations for reservation renewal, flow monitoring, and policing, resulting in highly efficient router operation, which is demonstrated with a full implementation. Finally, SIBRA supports Dynamic Interdomain Leased Lines (DILLs), offering new business opportunities for ISPs.

show abstract

“…There are a number of sources of attack free HTTP traces provided by the Internet Traffic Archives. Analysis on these datasets have led some researchers to suggest it does not resemble real network data.Table 10 illustrates Existing Dataset for DDoS defence evaluation [75].…”

Section: Datasets and Toolsmentioning

confidence: 99%

Shielding techniques for Application Layer DDoS Attack in Wireless Networks : A Methodological Review

Salunke

Ragavendran

2021

Preprint

View full text Add to dashboard Cite

In today's world the wireless networks are widely preferred as a communication medium as these are infrastructure less networks. The application layer of these networks is targeted by attackers because it is responsible for actual data exchange with privacy of end users. As human dependency on wireless networks is increasing the DDoS attacks i.e. distributed denial of service attack which becomes a nightmare for the researchers. This attack is one of the most devastating attacks that can be executed on web-servers and congest the network keys like socket connections, CPU cycles, and memory database. In this current mobile computing world, the necessity of DDOS attack management is significantly increased because this attack can degrade the entire web experience. Further, this DDOS attack is commenced along with the legitimate requests so it is also important to differentiate DDoS attack from other similar Events. This review endeavors to explore with more emphasis on various privacy preservation scheme for application layer DDoS attack and its management stages like prevention, detection, mitigation and Differentiation along with comparative statement of prominent techniques dis-covered in each stage. This methodological survey report shall lead the way to researchers and network designers to suit the specific management scheme to provide the complete protection of wireless networks from DDoS attack.

show abstract

How to Test DoS Defenses

Cited by 27 publications

References 35 publications

Towards a Reliable Intrusion Detection Benchmark Dataset

Towards a Reliable Intrusion Detection Benchmark Dataset

SIBRA: Scalable Internet Bandwidth Reservation Architecture

Shielding techniques for Application Layer DDoS Attack in Wireless Networks : A Methodological Review

Contact Info

Product

Resources

About

How to Test DoS Defenses

Cited by 27 publications

References 35 publications

Towards a Reliable Intrusion Detection Benchmark Dataset

Towards a Reliable Intrusion Detection Benchmark Dataset

SIBRA: Scalable Internet Bandwidth Reservation Architecture

Shielding techniques for Application Layer DDoS Attack in&nbsp;Wireless&nbsp;Networks : A Methodological Review

Contact Info

Product

Resources

About

Shielding techniques for Application Layer DDoS Attack in Wireless Networks : A Methodological Review