short-paper

Modeling of low-rate DDoS-attacks

Authors:

Yaroslav Tarasov,

Ekaterina Pakulova,

Oleg BasovAuthors Info & Claims

SIN '19: Proceedings of the 12th International Conference on Security of Information and Networks

Article No.: 24, Pages 1 - 4

https://doi.org/10.1145/3357613.3357638

Published: 12 September 2019 Publication History

Get Access

Abstract

The paper presents the results of the analysis and simulation study of Denial of Service attacks for a variety of services that store, process and transmit data to the Internet. Focuses on the simulation of low-rate Distributed Denial of Service attacks on the infrastructure of the global dynamic routing Border Gateway Protocol (BGP) and HyperText Transfer Protocol (HTTP). We choose the following software for the set-up: Apache2, Nginx, Quagga, Debian, VMware and Citrix XenServer with the most popular configuration options. The study analyzed the vulnerability of data communication protocols of the transport and application layer, leading to the possibility of the threat of low-rate DDoS-attacks. This study demonstrates the implementation of such an attack on real computer systems and computer networks.

References

[1]

[n.d.]. APACHE. HTTP server project. https://httpd.apache.org/

Google Scholar

[2]

[n.d.]. NGINX. https://nginx.org/

Google Scholar

[3]

[n.d.]. Slowloris HTTP DoS. https://web.archive.org/web/20090822001255/http://ha.ckers.org/slowloris/

Google Scholar

[4]

2015. Quagga Routing Software Suite. http://www.nongnu.org/quagga/

Google Scholar

[5]

Edward W. Knightly Aleksandar Kuzmanovic. 2006. Low-rate TCP-targeted denial of service attacks and counter strategies. IEEE/ACM Transactions on Networking 14, 4 (2006), 683--696.

Digital Library

Google Scholar

[6]

CITRIX. [n.d.]. Citrix Hypervisor. https://www.citrix.com/products/citrix-hypervisor/formerly XenServer.

Google Scholar

[7]

Internet Systems Consortium. [n.d.]. BIND9. https://www.isc.org/bind/

Google Scholar

[8]

Evan Damon, Julian Dale, Evaristo Laron, Jens Mache, Nathan Land, and Richard Weiss. 2012. Hands-on denial of service lab exercises using slowloris and rudy. In proceedings of the 2012 information security curriculum development conference. ACM, 21--29.

Digital Library

Google Scholar

[9]

Dimitrios Moustis and Panayiotis Kotzanikolaou. 2013. Evaluating security controls against HTTP-based DDoS attacks. In IISA 2013. IEEE, 1--6.

Crossref

Google Scholar

[10]

Yakov Rekhter and Tony Li. 1995. A border gateway protocol 4 (BGP-4). (1995).

Google Scholar

[11]

H.K. Chu V. Paxson, M. Allman and M. Sargent. 2011. Computing TCP's Retransmission Timer. RFC 6298. RFC Editor. 1--11 pages. https://tools.ietf.org/rfc/rfc6298.txt

Google Scholar

[12]

Tarasov Y.V. 2016. Neural network method of detection of low-rate dos-attacks on web-services. In VII All-Russian Scientific and Technical Conference "Safety of information technology" (BIT - 2016). MSTU Bauman.

Google Scholar

Cited By

View all

Mihailescu MMihai DCarabas MKomisarek MPawlicki MHołubowicz WKozik R(2021)The Proposition and Evaluation of the RoEduNet-SIMARGL2021 Network Intrusion Detection DatasetSensors10.3390/s2113431921:13(4319)Online publication date: 24-Jun-2021
https://doi.org/10.3390/s21134319
Perez-Diaz JValdovinos IChoo KZhu D(2020)A Flexible SDN-Based Architecture for Identifying and Mitigating Low-Rate DDoS Attacks Using Machine LearningIEEE Access10.1109/ACCESS.2020.30193308(155859-155872)Online publication date: 2020
https://doi.org/10.1109/ACCESS.2020.3019330

Modeling of low-rate DDoS-attacks
1. Networks

Recommendations

SENSS Against Volumetric DDoS Attacks
ACSAC '18: Proceedings of the 34th Annual Computer Security Applications Conference

Volumetric distributed denial-of-service (DDoS) attacks can bring any network to a halt. Because of their distributed nature and high volume, the victim often cannot handle these attacks alone and needs help from upstream ISPs. Today's Internet has no ...
DDoS Attacks: Evolution, Detection, Prevention, Reaction, and Tolerance
DDoS attacks and defense mechanisms: classification and state-of-the-art

Denial of Service (DoS) attacks constitute one of the major threats and among the hardest security problems in today's Internet. Of particular concern are Distributed Denial of Service (DDoS) attacks, whose impact can be proportionally severe. With ...

Comments

Information & Contributors

Information

Published In

SIN '19: Proceedings of the 12th International Conference on Security of Information and Networks

September 2019

179 pages

ISBN:9781450372428

DOI:10.1145/3357613

Conference Chairs:
Oleg Makarevich
Southern Federal University, Russia
,
Dmitry Popov
Sochi State University, Russia
,
Ludmila Babenko
Southern Federal University, Russia
,
Pete Burnap
Cardiff University, Wales
,
Atilla Elçi
Aksaray University, Turkey
,
Ron Poet
University of Glasgow, UK
,
Jaideep Vaidya
Rutgers University
,
Mehmet Orgun
Macquarie University, Australia
,
Manoj S. Gaur
MNIT, India
,
Rajveer S. Shekhawat
MUJ, India

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 12 September 2019

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Short-paper

Funding Sources

Russian Foundation For Basic Research
Council on grants of the President of the Russian Federation.

Conference

SIN 2019

SIN 2019: The 12th International Conference on Security of Information and Networks

September 12 - 15, 2019

Sochi, Russia

Acceptance Rates

Overall Acceptance Rate 102 of 289 submissions, 35%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
159
Total Downloads

Downloads (Last 12 months)8
Downloads (Last 6 weeks)0

Reflects downloads up to 28 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Mihailescu MMihai DCarabas MKomisarek MPawlicki MHołubowicz WKozik R(2021)The Proposition and Evaluation of the RoEduNet-SIMARGL2021 Network Intrusion Detection DatasetSensors10.3390/s2113431921:13(4319)Online publication date: 24-Jun-2021
https://doi.org/10.3390/s21134319
Perez-Diaz JValdovinos IChoo KZhu D(2020)A Flexible SDN-Based Architecture for Identifying and Mitigating Low-Rate DDoS Attacks Using Machine LearningIEEE Access10.1109/ACCESS.2020.30193308(155859-155872)Online publication date: 2020
https://doi.org/10.1109/ACCESS.2020.3019330

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Recommendations

SENSS Against Volumetric DDoS Attacks

DDoS Attacks: Evolution, Detection, Prevention, Reaction, and Tolerance

DDoS attacks and defense mechanisms: classification and state-of-the-art

Comments

Information

Published In

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations