Detection Method Based on Reverse Proxy against Web Flooding Attacks

Author

Lin, Chu-Hsing ; Liu, Jung-Chun ; Lien, Chih-Chieh

Author_Institution

Dept. of Comput. Sci. & Inf. Eng., Tunghai Univ., Taichung

Volume

3

fYear

2008

Firstpage

281

Lastpage

284

Abstract

Web servers face all kinds of users; some of them engage malicious activities to degrade or completely block network services, such as flooding attacks. As a result, lots of resource and bandwidth on web sites might be wasted. In this paper, we propose a detection method based on reverse proxy servers to detect the flooding attacks. Our proposed method can be incorporated in a priority queue-based scheme to enhance quality of service for normal users. We have done performance evaluation of our method by implementing it on a server under heavy load. The experimental results show that our method is effective to detect malicious flooding attacks and is efficient to analyze and classify network traffic. Since the process time of the detection method grows linearly with the data size, it is permissible to implement our proposed scheme with servers under heavy load to improve their performance.

Keywords

Internet; Web services; quality of service; security of data; Web flooding attacks; Web servers; Web sites; malicious activities; malicious flooding attack detection; network services; network traffic; priority queue-based scheme; quality of service; reverse proxy; Bandwidth; Computer crime; Face detection; Floods; Network servers; Quality of service; Queueing analysis; Traffic control; Web server; Web services; DoS attack; QoS; priority queue; reverse proxy;

fLanguage

English

Publisher

ieee

Conference_Titel

Intelligent Systems Design and Applications, 2008. ISDA '08. Eighth International Conference on

Conference_Location

Kaohsiung

Print_ISBN

978-0-7695-3382-7

Type

conf

DOI

10.1109/ISDA.2008.72

Filename

4696475