Application-layer denial of service attacks: taxonomy and survey
作者: Georgios Mantas , Natalia Stakhanova , Hugo Gonzalez , Hossein Hadian Jazi , Ali A. Ghorbani
DOI: 10.1504/IJICS.2015.073028
关键词: Taxonomy (general) 、 Internet privacy 、 Computer science 、 Application layer 、 Security community 、 Software deployment 、 Network level 、 Terminology 、 Computer security 、 Field (computer science) 、 Denial-of-service attack
摘要: The recent escalation of application-layer denial service DoS attacks has attracted a significant interest the security research community. Since usually do not manifest themselves at network level, they avoid traditional network-layer-based detection. Therefore, community focused on specialised detection and mitigation mechanisms. However, deployment reliable efficient defence mechanisms against these requires comprehensive understanding existing supported by unified terminology. Thus, in this paper we address issue devise taxonomy attacks. By devising proposed taxonomy, intend to give researchers better provide foundation for organising efforts within specific field.
acm.org
sci-hub.se 参考文章(28)
James Kirrage, Asiri Rathnayake, Hayo Thielecke, Static Analysis for Regular Expression Denial-of-Service Attacks Network and System Security. pp. 135- 148 ,(2013) , 10.1007/978-3-642-38631-2_11
Scott A. Crosby, Dan S. Wallach, Denial of service via algorithmic complexity attacks usenix security symposium. pp. 3- 3 ,(2003)
Gabriel Maciá-Fernández, Jesús E. Díaz-Verdejo, Pedro García-Teodoro, Francisco de Toro-Negro, LoRDAS: A Low-Rate DoS Attack against Application Servers Critical Information Infrastructures Security. pp. 197- 209 ,(2008) , 10.1007/978-3-540-89173-4_17
Yajuan Tang, Countermeasures on application level low-rate denial-of-service attack international conference on information and communication security. pp. 70- 80 ,(2012) , 10.1007/978-3-642-34129-8_7
Srinivas Padmanabhuni, Vineet Singh, K Senthil Kumar, Abhishek Chatterjee, Preventing Service Oriented Denial of Service (PreSODoS): A Proposed Approach international conference on web services. pp. 577- 584 ,(2006) , 10.1109/ICWS.2006.102
Hakem Beitollahi, Geert Deconinck, ConnectionScore: a statistical technique to resist application-layer DDoS attacks ambient intelligence. ,vol. 5, pp. 425- 442 ,(2014) , 10.1007/S12652-013-0196-5
Debasish Das, Utpal Sharma, D. K. Bhattacharyya, Detection of HTTP flooding attacks in multiple scenarios Proceedings of the 2011 International Conference on Communication, Computing & Security - ICCCS '11. pp. 517- 522 ,(2011) , 10.1145/1947940.1948047
Tao Peng, Christopher Leckie, Kotagiri Ramamohanarao, Survey of network-based defense mechanisms countering the DoS and DDoS problems ACM Computing Surveys. ,vol. 39, pp. 3- ,(2007) , 10.1145/1216370.1216373
Andreas Falkenberg, Christian Mainka, Juraj Somorovsky, Jorg Schwenk, A New Approach towards DoS Penetration Testing on Web Services 2013 IEEE 20th International Conference on Web Services. pp. 491- 498 ,(2013) , 10.1109/ICWS.2013.72
Jin Tang, Yu Cheng, Yong Hao, Detection and prevention of SIP flooding attacks in voice over IP networks international conference on computer communications. pp. 1161- 1169 ,(2012) , 10.1109/INFCOM.2012.6195475