DOS & DDOS |
| AID - A Global Anti-Dos Service: A number of solutions for DOS attacks have been proposed in the recent times but most of them need a large scale server upgrade worldwide to implement it which is not a practical solution. Hence, the following paper comes out with a solution, to use anti-DOS overlay service (AID) to counter the DOS attacks. In such a service, an algorithm incorporated into the AID system calculates the distributed virtual clock packet scheduling to restrict the amount of data any client can impose on AID. Various simulation trials have been run to support the efficiency of this service. Author : Shigang Chen, Yibei Ling, Randy Chow, Ye Xia. Reference: ScienceDirect, 2007.
Mass Network Flooding Attacks (Distributed Denial of Service - DDoS) Surface in the Wild: The first two versions of attacks called Trin00 and TFN in the form of DDoS are discussed in this article. The author describes the intensity of these attacks and their characterisitcs are explained in detail. The impact of the attacks and the steps taken by the CERT(Computer Emergency Response Team) after these attacks are described. Author : Dr.Bill Hancock Reference: Computers & Security, 2000.
Protecting Electronic Commerce From Distributed Denial-of-Service Attacks: The severity of the DOS and DDOS attacks has evolved in complexity in the recent years. Many solutions have been offered to mitigate the effects of such attacks. The following paper talks about one such solution to use privileged class of service (COS) where the e-merchants will be required to pay a certain amount to the Internet Service Providers (ISP's) to carry packets of the e-merchants best clients called VIP's. The VIP's rights would expire after a certain amount of time or after carrying a certain amount of data. In this way the e-merchants can protect the services of the clients. Author : Jose Carlos Brustoloni Reference: ACM, 2002.
Distributed computing: an experimental investigation of a malicious denial-of-service applet: This paper tries to expose a bug in the Java Virtual Machine (JVM) where Threads in Java can work as Denial of service attack agents unsuspectingly. The stop() call when using multi threading can cause a situation where the browser can act unpredictably. The paper talks about an experimental investigation of this malicious denial-of-service applet in Java and the objective is to improve the security of the current Java model by exposing this bug. Authors: B.C.Soh, S. Young Reference: Computer Communications, 1998
Protecting Web Servers from Distributed Denial of Service Attacks: Taking into consideration the fact that there is no satisfactory protection from Distributed Denial of Service Attacks, the paper tries to provide an overall view of the current tools available to conduct DOS attacks. The paper gives a literature review of the various solutions which have been offered and proposes Class Based Routing mechanisms in the Linux kernel that can prevent sever impacts of DDOS attacks on clusters of web servers under attack. Authors: Frank Kargl, Jeorn Maier, Michael Weber Reference: ACM, 2001.
DDoS Defense by Offense: The paper evaluates the characteristics of a Distributed Denial of Service attack tool called Speak-up. This particular tool has been used in several DDoS attacks recently and the authors try to explain its characteristics and its ability to send legitimate requests to the server from attack computers which consume computational resources. The details of how traffic inflation is created by such attacks and the scenarios which follow are explained in detail. Authors: Michael Walfish, Mythili Vutukuru, Hari Balakrishnan, David Karger, Scott Shenker Reference: ACM, 2006.
|