Study and Performance Evaluation on Recent DDoS Trends of Attack &amp; Defense

Aamir, Muhammad; Arif, Muhammad

doi:10.5815/ijitcs.2013.08.06

Cited by 16 publications

(7 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This infrastructure works around heterogeneous, locally-specific security. Most of these attacks are kind of distributed denial of service attacks (DDoS) [39]. Attempt to provide security against DDoS on Grid is made by Varalakshmi et.al.…”

Section: Related Workmentioning

confidence: 99%

Immune-Inspired Self-Protection Model for Securing Grid

Chopra¹,

Kaur

2016

IJITCS

View full text Add to dashboard Cite

Abstract-The application of human immunology in solving security problems in Grid Computing seems to be a thought-provoking research area. Grid involves large number of dynamic heterogeneous resources. Manually managing the security for such dynamic system is always fault prone. This paper presents the simple immune based model for self-protection (SIMS) of grid environment from various attacks like DoS, DDoS, Probing, etc. Like human body helps to identify and respond to harmful pathogens that it doesn't recognize as "self", in the same manner SIMS incorporates the immunological concepts and principles for safeguarding the grid from various security breaches.

show abstract

Section: Related Workmentioning

confidence: 99%

Immune-Inspired Self-Protection Model for Securing Grid

Chopra¹,

Kaur

2016

IJITCS

View full text Add to dashboard Cite

show abstract

“…Since malicious traffic now flows to the honey farm, it ensures that the production network is shielded from flooding attacks. Honey VM's in the farm keep the attacker engaged through a set of challenge-response queries further slowing down the attacker [19]. Also, once the attack source is confirmed, all incoming traffic from that source is blocked at the firewall itself.…”

Section: B Preventing Flooding Attacksmentioning

confidence: 99%

“…For this, the honey VM then employs a challenge-response model to gather more information. This is accomplished by sending a set of challenge queries to suspicious source [19]. Based on the responses received, the honey VM decides whether further investigation is necessary.…”

Section: A Detection Of An Attackmentioning

confidence: 99%

See 1 more Smart Citation

HoneyMesh: Preventing Distributed Denial of Service Attacks using Virtualized Honeypots

Deshpande¹

2015

IJERT

View full text Add to dashboard Cite

Abstract-Today, internet and web services have become an inseparable part of our lives. Hence, ensuring continuous availability of service has become imperative to the success of any organization. But these services are often hampered by constant threats from myriad types of attacks. One such attack is called distributed denial of service attack that results in issues ranging from temporary slowdown of servers to complete non-availability of service. Honeypot, which is a sort of a trap, can be used to interact with potential attackers to deflect, detect or prevent such attacks and ensure continuous availability of service. This paper gives insights into the problems posed by distributed denial of service attacks, existing solutions that use honeypots and how a mesh of virtualized honeypots can be used to prevent distributed denial of service attacks.

show abstract

“…We find some comprehensive papers & articles to enrich our literature review on the topic [1][2][3][4][5][11][12][13][14][15][16][17][18][19][20][21][22][23][24][25][26][27][28][29]. Some reviewed methods have also been referred in tables of first author's previous work [30]; however this paper contains major changes as compared to the previous study. Discussion on Prolexic attack report of year 2012 quarter 1 and performance evaluation in OPNET simulator constitute a significant part of previous publication whereas they have not been covered in this paper.…”

Section: Ddos Detection and Mitigationmentioning

confidence: 99%

A Survey on DDoS Attack and Defense Strategies: From Traditional Schemes to Current Techniques

Aamir

Zaidi

2013

IIS

Self Cite

View full text Add to dashboard Cite

Distributed Denial of Service (DDoS) attacks exhaust victim's bandwidth or services. Traditional architecture of Internet is vulnerable to DDoS attacks and an ongoing cycle of attack & defense is observed. A recent attack report of year 2013 -'Quarter 1' from Prolexic Technologies identifies that 1.75 percent increase in total number of DDoS attacks has been recorded as compared to similar attacks of previous year's last quarter. In this paper, different types and techniques of DDoS attacks and their countermeasures are surveyed. The significance of this paper is the coverage of many aspects of countering DDoS attacks including new research on the topic. We survey different papers describing methods of defense against DDoS attacks based on entropy variations, traffic anomaly parameters, neural networks, device level defense, botnet flux identifications, application layer DDoS defense and countermeasures in wireless networks, CCN & cloud computing environments. We also discuss some traditional methods of defense such as traceback and packet filtering techniques, so that readers can identify major differences between traditional and current techniques of defense against DDoS attacks. We identify that application layer DDoS attacks possess the ability to produce greater impact on the victim as they are driven by legitimate-like traffic, making it quite difficult to identify and distinguish from legitimate requests. The need of improved defense against such attacks is therefore more demanding in research. The study conducted in this paper can be helpful for readers and researchers to recognize better techniques of defense in current times against DDoS attacks and contribute with more research on this topic in the light of future challenges identified in this paper.

show abstract

Study and Performance Evaluation on Recent DDoS Trends of Attack & Defense

Cited by 16 publications

References 17 publications

Immune-Inspired Self-Protection Model for Securing Grid

Immune-Inspired Self-Protection Model for Securing Grid

HoneyMesh: Preventing Distributed Denial of Service Attacks using Virtualized Honeypots

A Survey on DDoS Attack and Defense Strategies: From Traditional Schemes to Current Techniques

Contact Info

Product

Resources

About