Title :
Method of slow-attack detection
Author :
Duravkin, Ievgen ; Loktionova, Anastasiya ; Carlsson, Anders
Author_Institution :
Telecommun. Syst. Dept., Kharkiv Nat. Univ. of Radioelectron., Kharkiv, Ukraine
Abstract :
The analysis of realization low-intensity HTTP-attacks was performed. Were described scenarios of Slowloris, Slow POST and Slow READ attack. Features of this type of attacks in comparison with low-level attacks such as “denial of service” were selected: they do not require a large number of resources from the attacking machine, and they are difficult for the detection, since their parameters are similar to legitimate traffic. For each type of attacks the characteristic features were highlighted. Parameters of http-request, which assume the detection of this type attacks high-lighted. The analysis of mathematical tools of building the models for the systems for these types of attacks detection on the basis of the obtained parameters was performed.
Keywords :
security of data; Slow POST attack; Slow READ attack; Slowloris attack; denial-of-service attack; http-request parameter; hypertext transfer protocol; low-intensity HTTP-attacks; slow-attack detection method; Computer crime; Data models; Educational institutions; Markov processes; Telecommunications; Web servers; Denial of service; Slow-http; network attack; web-server;
Conference_Titel :
Infocommunications Science and Technology, 2014 First International Scientific-Practical Conference Problems of
Conference_Location :
Kharkov
Print_ISBN :
978-1-4799-7342-2
DOI :
10.1109/INFOCOMMST.2014.6992341
