DocumentCode
1775296
Title
Method of slow-attack detection
Author
Duravkin, Ievgen ; Loktionova, Anastasiya ; Carlsson, Anders
Author_Institution
Telecommun. Syst. Dept., Kharkiv Nat. Univ. of Radioelectron., Kharkiv, Ukraine
fYear
2014
fDate
14-17 Oct. 2014
Firstpage
171
Lastpage
172
Abstract
The analysis of realization low-intensity HTTP-attacks was performed. Were described scenarios of Slowloris, Slow POST and Slow READ attack. Features of this type of attacks in comparison with low-level attacks such as “denial of service” were selected: they do not require a large number of resources from the attacking machine, and they are difficult for the detection, since their parameters are similar to legitimate traffic. For each type of attacks the characteristic features were highlighted. Parameters of http-request, which assume the detection of this type attacks high-lighted. The analysis of mathematical tools of building the models for the systems for these types of attacks detection on the basis of the obtained parameters was performed.
Keywords
security of data; Slow POST attack; Slow READ attack; Slowloris attack; denial-of-service attack; http-request parameter; hypertext transfer protocol; low-intensity HTTP-attacks; slow-attack detection method; Computer crime; Data models; Educational institutions; Markov processes; Telecommunications; Web servers; Denial of service; Slow-http; network attack; web-server;
fLanguage
English
Publisher
ieee
Conference_Titel
Infocommunications Science and Technology, 2014 First International Scientific-Practical Conference Problems of
Conference_Location
Kharkov
Print_ISBN
978-1-4799-7342-2
Type
conf
DOI
10.1109/INFOCOMMST.2014.6992341
Filename
6992341
Link To Document