• DocumentCode
    2422793
  • Title

    Sophisticated Denial of Service attacks aimed at application layer

  • Author

    Durcekova, Veronika ; Schwartz, Ladislav ; Shahmehri, Nahid

  • Author_Institution
    Dept. of Telecommun. & Multimedia, Univ. of Zilina, Žilina, Slovakia
  • fYear
    2012
  • fDate
    21-22 May 2012
  • Firstpage
    55
  • Lastpage
    60
  • Abstract
    Popularity of application services offered by Internet has grown a lot in recent years. Basically, Internet was built with the focus on its functionality and not with the focus on the security tasks. This has led to discovering embedded weaknesses in Internet architecture, which can be misused by attackers with malicious purposes. This paper focuses on application layer Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks detection, because these attacks present a continuous critical threat to the Internet services. DDoS attacks are typically carried out at the network layer. However, there is evidence to suggest that application layer DDoS attacks can be more effective than the traditional ones. Over some period of time, researchers proposed many solutions to prevent the DoS/DDoS attacks from different OSI layers, but there has been done only a very small research on application layer. In this paper, we consider sophisticated attacks that utilize legitimate application layer requests from legitimately connected network machines to overwhelm Web server. Since the attack signature of each application layer DDoS is represented in abnormal user behavior, we propose several mechanisms, which can be used for application DoS/DDoS attack detection.
  • Keywords
    Internet; computer network security; Internet; OSI layer; application service; denial of service attack; distributed denial of service attack detection; embedded weaknesses; legitimate application layer; Bandwidth; Computer crime; Computers; IP networks; Monitoring; Web servers; Denial of Service; Distributed Denial of Service; application layer;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    ELEKTRO, 2012
  • Conference_Location
    Rajeck Teplice
  • Print_ISBN
    978-1-4673-1180-9
  • Type

    conf

  • DOI
    10.1109/ELEKTRO.2012.6225571
  • Filename
    6225571