Proactive server roaming for mitigating denial-of-service attacks

Author

Khattab, Sherif M. ; Sangpachatanaruk, Chatree ; Melhem, Rami ; Mossé, Daniel ; Znati, Taieb

Author_Institution

Dept. of Comput. Sci., Pittsburgh Univ., PA, USA

fYear

2003

fDate

11-13 Aug. 2003

Firstpage

286

Lastpage

290

Abstract

We propose a framework based on proactive server roaming to mitigate the effects of denial-of-service (DoS) attacks. The active server proactively changes its location within a pool of servers to defend against unpredictable and undetectable attacks. Only legitimate clients can follow the active server as it roams. We present algorithms that are secure, distributed, randomized, and adaptive for triggering the roaming and determining the next server to roam to. We propose some modifications to the state recovery process of existing TCP connection-migration schemes to suit roaming. Preliminary experiments in a FreeBSD network show that the overhead of server roaming is small, in terms of response time, in the absence of attacks. Further, during an attack, roaming significantly improves the response time.

Keywords

distributed algorithms; network servers; quality of service; randomised algorithms; telecommunication security; transport protocols; FreeBSD network; TCP connection-migration; denial-of-service attack mitigation; distributed algorithms; network security; proactive server roaming; quality of service; randomised algorithms; telecommunication security; telecommunication traffic; Authentication; Computer crime; Computer science; Delay; Information science; Invasive software; Network servers; Operating systems; Resource management; Telecommunication traffic;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Technology: Research and Education, 2003. Proceedings. ITRE2003. International Conference on

Print_ISBN

0-7803-7724-9

Type

conf

DOI

10.1109/ITRE.2003.1270623

Filename

1270623