Title :
A Chain Reaction DoS Attack on 3G Networks: Analysis and Defenses
Author :
Zhao, Bo ; Chi, Caixia ; Gao, Wei ; Zhu, Sencun ; Cao, Guohong
Author_Institution :
Dept. of Comput. Sci. & Eng., Pennsylvania State Univ., University Park, PA
Abstract :
The IP multimedia subsystem (IMS) is being deployed in the third generation (3G) networks since it supports many kinds of multimedia services. However, the security of IMS networks has not been fully examined. This paper presents a novel DoS attack against IMS. By congesting the presence service, a core service of IMS, a malicious attack can cause chained automatic reaction of the system, thus blocking all the services of IMS. Because of the low-volume nature of this attack, an attacker only needs to control several clients to paralyze an IMS network supporting one million users. To address this DoS attack, we propose an online early defense mechanism, which aims to first detect the attack, then identify the malicious clients, and finally block them. We formulate this problem as a change-point detection problem, and solve it based on the non-parametric GRSh test. Through trace-driven experiments, we demonstrate that our defense mechanism can throttle this DoS attack within a short defense time window while generating few false alarms.
Keywords :
3G mobile communication; IP networks; multimedia communication; security of data; 3G networks; IMS networks; IP multimedia subsystem; chain reaction DoS attack; chained automatic reaction; change-point detection; defense time window; malicious attack; malicious clients; multimedia services; non-parametric GRSh test; online early defense mechanism; Communications Society; Computer crime; Computer science; Information analysis; Maintenance engineering; Protocols; Resonance light scattering; Signal generators; Subscriptions; Telecommunication traffic;
Conference_Titel :
INFOCOM 2009, IEEE
Conference_Location :
Rio de Janeiro
Print_ISBN :
978-1-4244-3512-8
Electronic_ISBN :
0743-166X
DOI :
10.1109/INFCOM.2009.5062173
