Preliminary study of fission defenses against low-volume DoS attacks on proxied multiserver systems

Yuquan Shan, George Kesidis, Daniel Fleck, Angelos Stavrou

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Scopus citations

Abstract

Multiserver applications deployed in the public cloud infrastructure continue to be plagued by significant threat of Distributed Denial of Service (DDoS) attacks by large scale botnets, including very notable attack instances just this past Fall. Previously, proposed cloud-based defenses have attempted to address different aspects of this problem including: A proactive moving target approach to combat the reconnaissance phase where the botnet ascertains the identities (IP addresses) of the proxy (indirection) servers, and client-to-proxy-server assignment shuffling to deal with volumetric attacks. In this paper, we describe a 'fission' quarantine approach to deal with low-volume DoS attacks targeting the application servers. We then overview a developing attack-defense emulation platform. Finally, we give the results of a preliminary, model based numerical evaluation of the performance and cost of fission defense.

Original languageEnglish (US)
Title of host publicationProceedings of the 2017 12th International Conference on Malicious and Unwanted Software, MALWARE 2017
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages67-74
Number of pages8
ISBN (Electronic)9781538614365
DOIs
StatePublished - Mar 23 2018
Event12th International Conference on Malicious and Unwanted Software, MALWARE 2017 - Fajardo, United States
Duration: Oct 11 2017Oct 14 2017

Publication series

NameProceedings of the 2017 12th International Conference on Malicious and Unwanted Software, MALWARE 2017
Volume2018-January

Other

Other12th International Conference on Malicious and Unwanted Software, MALWARE 2017
CountryUnited States
CityFajardo
Period10/11/1710/14/17

All Science Journal Classification (ASJC) codes

  • Hardware and Architecture
  • Safety, Risk, Reliability and Quality
  • Software
  • Computer Networks and Communications

Fingerprint Dive into the research topics of 'Preliminary study of fission defenses against low-volume DoS attacks on proxied multiserver systems'. Together they form a unique fingerprint.

  • Cite this

    Shan, Y., Kesidis, G., Fleck, D., & Stavrou, A. (2018). Preliminary study of fission defenses against low-volume DoS attacks on proxied multiserver systems. In Proceedings of the 2017 12th International Conference on Malicious and Unwanted Software, MALWARE 2017 (pp. 67-74). (Proceedings of the 2017 12th International Conference on Malicious and Unwanted Software, MALWARE 2017; Vol. 2018-January). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/MALWARE.2017.8323958