Handling System Overload Resulting from DDoS Attacks and Flash Crowd Events

2015 ◽  
Author(s):  
Zaid Al-Ali ◽  
Basheer Al-Duwairi ◽  
Ahmad T. Al-Hammouri
Keyword(s):  
Ddos Attacks ◽  
Handling System ◽  
Flash Crowd

scholarly journals A Model to Partly but Reliably Distinguish DDOS Flood Traffic from Aggregated One

2012 ◽  
Vol 2012 ◽  
pp. 1-12 ◽  
Author(s):  
Ming Li ◽  
Wei Zhao
Keyword(s):  
Detection Probability ◽  
The Other ◽  
Network Environment ◽  
Ddos Attacks ◽  
Protected Site ◽  
Flash Crowd ◽  
Reliable Detection

Reliable distinguishing DDOS flood traffic from aggregated traffic is desperately desired by reliable prevention of DDOS attacks. By reliable distinguishing, we mean that flood traffic can be distinguished from aggregated one for a predetermined probability. The basis to reliably distinguish flood traffic from aggregated one is reliable detection of signs of DDOS flood attacks. As is known, reliably distinguishing DDOS flood traffic from aggregated traffic becomes a tough task mainly due to the effects of flash-crowd traffic. For this reason, this paper studies reliable detection in the underlying DiffServ network to use static-priority schedulers. In this network environment, we present a method for reliable detection of signs of DDOS flood attacks for a given class with a given priority. There are two assumptions introduced in this study. One is that flash-crowd traffic does not have all priorities but some. The other is that attack traffic has all priorities in all classes, otherwise an attacker cannot completely achieve its DDOS goal. Further, we suppose that the protected site is equipped with a sensor that has a signature library of the legitimate traffic with the priorities flash-crowd traffic does not have. Based on those, we are able to reliably distinguish attack traffic from aggregated traffic with the priorities that flash-crowd traffic does not have according to a given detection probability.

scholarly journals A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service Attacks

2015 ◽  
Vol 2015 ◽  
pp. 1-19 ◽  
Author(s):  
Mohammed A. Saleh ◽  
Azizah Abdul Manaf
Keyword(s):  
Web Applications ◽  
Denial Of Service ◽  
Optimal Solution ◽  
High Rate ◽  
Distributed Denial Of Service ◽  
Ddos Attacks ◽  
Innovative Design ◽  
Flash Crowd ◽  
Black List ◽  
Efficient Protection

The growth of web technology has brought convenience to our life, since it has become the most important communication channel. However, now this merit is threatened by complicated network-based attacks, such as denial of service (DoS) and distributed denial of service (DDoS) attacks. Despite many researchers’ efforts, no optimal solution that addresses all sorts of HTTP DoS/DDoS attacks is on offer. Therefore, this research aims to fix this gap by designing an alternative solution called a flexible, collaborative, multilayer, DDoS prevention framework (FCMDPF). The innovative design of the FCMDPF framework handles all aspects of HTTP-based DoS/DDoS attacks through the following three subsequent framework’s schemes (layers). Firstly, an outer blocking (OB) scheme blocks attacking IP source if it is listed on the black list table. Secondly, the service traceback oriented architecture (STBOA) scheme is to validate whether the incoming request is launched by a human or by an automated tool. Then, it traces back the true attacking IP source. Thirdly, the flexible advanced entropy based (FAEB) scheme is to eliminate high rate DDoS (HR-DDoS) and flash crowd (FC) attacks. Compared to the previous researches, our framework’s design provides an efficient protection for web applications against all sorts of DoS/DDoS attacks.

Real Time Handling System to Enhance the Productivity Based on the Layout Improvement

2016 ◽  
Vol 9 (6) ◽  
pp. 459
Author(s):  
Muataz Hazza F. Al Hazza ◽  
Any Nabila Abu Bakar ◽  
Erry Yulian T. Adesta ◽  
Assem Hatem Taha
Keyword(s):  
Real Time ◽  
Handling System

HULK and DDoS Attacks in Web Applications with Detection Mechanism

2018 ◽  
Vol 6 (6) ◽  
pp. 192
Author(s):  
Amit Sharma
Keyword(s):  
Web Applications ◽  
Denial Of Service ◽  
Single Server ◽  
Distributed Denial Of Service ◽  
Ddos Attacks ◽  
Application Layer ◽  
Detection Mechanism ◽  
Plan Execution ◽  
Social Affair ◽  
Server Application

Distributed Denial of Service attacks are significant dangers these days over web applications and web administrations. These assaults pushing ahead towards application layer to procure furthermore, squander most extreme CPU cycles. By asking for assets from web benefits in gigantic sum utilizing quick fire of solicitations, assailant robotized programs use all the capacity of handling of single server application or circulated environment application. The periods of the plan execution is client conduct checking and identification. In to beginning with stage by social affair the data of client conduct and computing individual user’s trust score will happen and Entropy of a similar client will be ascertained. HTTP Unbearable Load King (HULK) attacks are also evaluated. In light of first stage, in recognition stage, variety in entropy will be watched and malevolent clients will be recognized. Rate limiter is additionally acquainted with stop or downsize serving the noxious clients. This paper introduces the FAÇADE layer for discovery also, hindering the unapproved client from assaulting the framework.

Sign in / Sign up

Export Citation Format

Share Document