• DocumentCode
    3091579
  • Title

    Protecting Web servers from octopus attacks

  • Author

    Kobayashi, Yoshinori ; Chen, Eric Y. ; Oyama, Yoshihiro ; Yonezawa, Akinori

  • Author_Institution
    Tokyo Univ.
  • fYear
    2006
  • fDate
    23-27 Jan. 2006
  • Lastpage
    85
  • Abstract
    Denial-of-service (DoS) attacks are a major threat to the Internet and have not been completely solved in spite of much research effort. This paper deals with an important class of DoS attacks, called octopus attacks, which establish a flood of connections to a victim Web server and prevent legitimate users from connecting to the server. Octopus attacks cause serious performance degradation of the targeted server. In this paper, we propose an approach for protecting Web servers against octopus attacks. Our approach deploys an active monitor that monitors the network traffic arriving at a protected server. When there are an excessive number of connections to the server, this monitor resets the connection that is most likely to be an attacker´s. We implemented this monitor on a Linux platform. Through experiments, we confirmed that our monitor enabled a Web server to provide service to legitimate users even when octopus attacks were made against the server
  • Keywords
    Internet; monitoring; telecommunication security; telecommunication traffic; Internet; Linux platform; Web server; denial-of-service attacks; network traffic; octopus attacks; Computer crime; Degradation; Floods; Internet; Joining processes; Monitoring; Network servers; Protection; Telecommunication traffic; Web server;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Applications and the Internet, 2006. SAINT 2006. International Symposium on
  • Conference_Location
    Phoenix, AZ
  • Print_ISBN
    0-7695-2508-3
  • Type

    conf

  • DOI
    10.1109/SAINT.2006.52
  • Filename
    1581315
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3091579