scholarly journals A Model to Partly but Reliably Distinguish DDOS Flood Traffic from Aggregated One

2012 ◽  
Vol 2012 ◽  
pp. 1-12 ◽  
Author(s):  
Ming Li ◽  
Wei Zhao
Keyword(s):  
Detection Probability ◽  
The Other ◽  
Network Environment ◽  
Ddos Attacks ◽  
Protected Site ◽  
Flash Crowd ◽  
Reliable Detection

Reliable distinguishing DDOS flood traffic from aggregated traffic is desperately desired by reliable prevention of DDOS attacks. By reliable distinguishing, we mean that flood traffic can be distinguished from aggregated one for a predetermined probability. The basis to reliably distinguish flood traffic from aggregated one is reliable detection of signs of DDOS flood attacks. As is known, reliably distinguishing DDOS flood traffic from aggregated traffic becomes a tough task mainly due to the effects of flash-crowd traffic. For this reason, this paper studies reliable detection in the underlying DiffServ network to use static-priority schedulers. In this network environment, we present a method for reliable detection of signs of DDOS flood attacks for a given class with a given priority. There are two assumptions introduced in this study. One is that flash-crowd traffic does not have all priorities but some. The other is that attack traffic has all priorities in all classes, otherwise an attacker cannot completely achieve its DDOS goal. Further, we suppose that the protected site is equipped with a sensor that has a signature library of the legitimate traffic with the priorities flash-crowd traffic does not have. Based on those, we are able to reliably distinguish attack traffic from aggregated traffic with the priorities that flash-crowd traffic does not have according to a given detection probability.

scholarly journals Detection and Prevention Algorithm of DDoS Attack Over the IOT Networks

TEM Journal ◽  
2020 ◽  
pp. 899-906
Keyword(s):  
Denial Of Service ◽  
The Other ◽  
High Rate ◽  
Distributed Denial Of Service ◽  
Ddos Attacks ◽  
Huge Number ◽  
Security Issues ◽  
Ddos Attack ◽  
Legitimate User ◽  
The Impact

One of the most notorious security issues in the IoT is the Distributed Denial of Service (DDoS) attack. Using a large number of agents, DDoS attack floods the host server with a huge number of requests causing interrupting and blocking the legitimate user requests. This paper proposes a detection and prevention algorithm for DDoS attacks. It is divided into two parts, one for detecting the DDoS attack in the IoT end devices and the other for mitigating the impact of the attack placed on the border router. Also, it has the ability to differentiate the High-rate from the Lowrate DDoS attack accurately and defend against these two types of attacks. It is implemented and tested against different scenarios to dissect their efficiency in detecting and mitigating the DDoS attack.

Denial-of-Service (DoS) Attack and Botnet

2021 ◽  
pp. 49-73
Author(s):  
Arushi Arora ◽  
Sumit Kumar Yadav ◽  
Kavita Sharma
Keyword(s):  
Defense Mechanism ◽  
Denial Of Service ◽  
The Other ◽  
Denial Of Service Attacks ◽  
Ddos Attacks ◽  
Dos Attack ◽  
Dos Attacks ◽  
Commercial Software ◽  
Other Hand ◽  
Insight Into

This chapter describes how the consequence and hazards showcased by Denial of Service attacks have resulted in the surge of research studies, commercial software and innovative cogitations. Of the DoS attacks, the incursion of its variant DDoS can be quite severe. A botnet, on the other hand, is a group of hijacked devices that are connected by internet. These botnet servers are used to perform DDoS attacks effectively. In this chapter, the authors attempt to provide an insight into DoS attacks and botnets, focusing on their analysis and mitigation. They also propose a defense mechanism to mitigate our system from botnet DDoS attacks. This is achieved by using a through access list based configuration. The artful engineering of malware is a weapon used for online crime and the ideas behind it are profit-motivated. The last section of the chapter provides an understanding of the WannaCry Ransomware Attack which locked computers in more than 150 countries.

scholarly journals A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service Attacks

2015 ◽  
Vol 2015 ◽  
pp. 1-19 ◽  
Author(s):  
Mohammed A. Saleh ◽  
Azizah Abdul Manaf
Keyword(s):  
Web Applications ◽  
Denial Of Service ◽  
Optimal Solution ◽  
High Rate ◽  
Distributed Denial Of Service ◽  
Ddos Attacks ◽  
Innovative Design ◽  
Flash Crowd ◽  
Black List ◽  
Efficient Protection

The growth of web technology has brought convenience to our life, since it has become the most important communication channel. However, now this merit is threatened by complicated network-based attacks, such as denial of service (DoS) and distributed denial of service (DDoS) attacks. Despite many researchers’ efforts, no optimal solution that addresses all sorts of HTTP DoS/DDoS attacks is on offer. Therefore, this research aims to fix this gap by designing an alternative solution called a flexible, collaborative, multilayer, DDoS prevention framework (FCMDPF). The innovative design of the FCMDPF framework handles all aspects of HTTP-based DoS/DDoS attacks through the following three subsequent framework’s schemes (layers). Firstly, an outer blocking (OB) scheme blocks attacking IP source if it is listed on the black list table. Secondly, the service traceback oriented architecture (STBOA) scheme is to validate whether the incoming request is launched by a human or by an automated tool. Then, it traces back the true attacking IP source. Thirdly, the flexible advanced entropy based (FAEB) scheme is to eliminate high rate DDoS (HR-DDoS) and flash crowd (FC) attacks. Compared to the previous researches, our framework’s design provides an efficient protection for web applications against all sorts of DoS/DDoS attacks.

Denial-of-Service (DoS) Attack and Botnet

2018 ◽  
pp. 117-141 ◽  
Author(s):  
Arushi Arora ◽  
Sumit Kumar Yadav ◽  
Kavita Sharma
Keyword(s):  
Defense Mechanism ◽  
Denial Of Service ◽  
The Other ◽  
Denial Of Service Attacks ◽  
Ddos Attacks ◽  
Dos Attack ◽  
Dos Attacks ◽  
Commercial Software ◽  
Other Hand ◽  
Insight Into

This chapter describes how the consequence and hazards showcased by Denial of Service attacks have resulted in the surge of research studies, commercial software and innovative cogitations. Of the DoS attacks, the incursion of its variant DDoS can be quite severe. A botnet, on the other hand, is a group of hijacked devices that are connected by internet. These botnet servers are used to perform DDoS attacks effectively. In this chapter, the authors attempt to provide an insight into DoS attacks and botnets, focusing on their analysis and mitigation. They also propose a defense mechanism to mitigate our system from botnet DDoS attacks. This is achieved by using a through access list based configuration. The artful engineering of malware is a weapon used for online crime and the ideas behind it are profit-motivated. The last section of the chapter provides an understanding of the WannaCry Ransomware Attack which locked computers in more than 150 countries.

scholarly journals Application Layer DDoS Attack Defense Methods and A new Defense Mechanism against Flooding

2020 ◽  
Vol 8 (6) ◽  
pp. 208-212
Keyword(s):  
Machine Learning ◽  
Defense Mechanisms ◽  
Defense Mechanism ◽  
Denial Of Service ◽  
Distributed Denial Of Service ◽  
Network Environment ◽  
Ddos Attacks ◽  
Application Layer ◽  
New Approach ◽  
Ddos Attack

In a network environment, Distributed Denial of Service (DDoS) attacks eemploys a network or server is unavailable to its normal users. Application-layer Distributed Denial of Service (App-DDoS) attacks are serious issues for the webserver itself. The multitude and variety of such attacks and defense approaches are overwhelming. This paper here follows, we analyze the different defense mechanisms for application-layer DDoS attacks and proposes a new approach to defend using machine learning.

scholarly journals SARS-CoV-2 samples may escape detection because of a single point mutation in the N gene

2020 ◽  
Vol 25 (39) ◽  
Author(s):  
Katharina Ziegler ◽  
Philipp Steininger ◽  
Renate Ziegler ◽  
Jörg Steinmann ◽  
Klaus Korn ◽  
...  
Keyword(s):  
Single Nucleotide Polymorphism ◽  
Severe Acute Respiratory Syndrome ◽  
Single Point ◽  
The Other ◽  
N Gene ◽  
Single Point Mutation ◽  
Nucleotide Polymorphism ◽  
Single Nucleotide ◽  
Nucleoprotein Gene ◽  
Reliable Detection

We found that a single nucleotide polymorphism (SNP) in the nucleoprotein gene of severe acute respiratory syndrome coronavirus 2 (SARS-CoV-2) from a patient interfered with detection in a widely used commercial assay. Some 0.2% of the isolates in the EpiCoV database contain this SNP. Although SARS-CoV-2 was still detected by the other probe in the assay, this underlines the necessity of targeting two independent essential regions of a pathogen for reliable detection.

Sign in / Sign up

Export Citation Format

Share Document