Analysis of UDP DDoS flood cyber attack and defense mechanisms on Web Server with Linux Ubuntu 13

Kolahi, Samad S.; Treseangrat, Kiattikul; Sarrafpour, Bahman A. Sassani

doi:10.1109/iccspa.2015.7081286

Cited by 33 publications

(17 citation statements)

References 7 publications

(7 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In UDP attack, it is possible to transmit a large amount of UDP packets to the system of the victim, thereby leading to saturation of network and reduced availability of bandwidth for authorized service in the victim's system. UDP-based DDoS attack involves the transmission of UDP packets to ports of the victims' machines in a random or precise manner [37]. Conversely, a UDPbased flooding attack entails the random transmission of UDP packets to the ports of the victims' machines.…”

Section: B Exploited Vulnerability Of Ddos Attackmentioning

confidence: 99%

Comprehensive Review of Artificial Intelligence and Statistical Approaches in Distributed Denial of Service Attack and Defense Methods

et al. 2019

View full text Add to dashboard Cite

Until now, an effective defense method against Distributed Denial of Service (DDoS) attacks is yet to be offered by security systems. Incidents of serious damage due to DDoS attacks have been increasing, thereby leading to an urgent need for new attack identification, mitigation, and prevention mechanisms. To prevent DDoS attacks, the basic features of the attacks need to be dynamically analyzed because their patterns, ports, and protocols or operation mechanisms are rapidly changed and manipulated. Most of the proposed DDoS defense methods have different types of drawbacks and limitations. Some of these methods have signature-based defense mechanisms that fail to identify new attacks and others have anomaly-based defense mechanisms that are limited to specific types of DDoS attacks and yet to be applied in open environments. Subsequently, extensive research on applying artificial intelligence and statistical techniques in the defense methods has been conducted in order to identify, mitigate, and prevent these attacks. However, the most appropriate and effective defense features, mechanisms, techniques, and methods for handling such attacks remain to be an open question. This review paper focuses on the most common defense methods against DDoS attacks that adopt artificial intelligence and statistical approaches. Additionally, the review classifies and illustrates the attack types, the testing properties, the evaluation methods and the testing datasets that are utilized in the methodology of the proposed defense methods. Finally, this review provides a guideline and possible points of encampments for developing improved solution models of defense methods against DDoS attacks. INDEX TERMS DDoS attack, DDoS defense, artificial intelligence technique, statistical technique.

show abstract

Section: B Exploited Vulnerability Of Ddos Attackmentioning

confidence: 99%

Comprehensive Review of Artificial Intelligence and Statistical Approaches in Distributed Denial of Service Attack and Defense Methods

et al. 2019

View full text Add to dashboard Cite

show abstract

“…This creates a scenario where the port remains open until the connection times out, when another fabricated SYN request is received. This overwhelms the target system's resources and prevents legitimate users from establishing connections [117][118][119][120][121]. Although UDP does not need a handshake to establish a connection, which in itself creates a vulnerability for attacks that overwhelm the connections with large volumes of bogus traffic.…”

Section: Transport (Layer 4)mentioning

confidence: 99%

A Survey of Protocol-Level Challenges and Solutions for Distributed Energy Resource Cyber-Physical Security

et al. 2018

View full text Add to dashboard Cite

The increasing proliferation of distributed energy resources (DERs) on the smart grid has made distributed solar and wind two key contributors to the expanding attack surface of the network; however, there is a lack of proper understanding and enforcement of DER communications security requirements. With vendors employing proprietary methods to mitigate hosts of attacks, the literature currently lacks a clear organization of the protocol-level vulnerabilities, attacks, and solutions mapped to each layer of the logical model such as the OSI stack. To bridge this gap and pave the way for future research by the authors in determining key DER security requirements, this paper conducts a comprehensive review of the key vulnerabilities, attacks, and potential solutions for solar and wind DERs at the protocol level. In doing so, this paper serves as a starting point for utilities, vendors, aggregators, and other industry stakeholders to develop a clear understanding of the DER security challenges and solutions, which are key precursors to comprehending security requirements.

show abstract

“…• In case of UDP flood [22], a large volume of packets is sent to the victim host. The victim host becomes busy in serving those requests and thus, legitimate users are interrupted.…”

Section: Typesmentioning

confidence: 99%

Preventing DDoS using Bloom Filter: A Survey

Patgiri¹,

Nayak²,

Borgohain³

2018

ICST Transactions on Scalable Information Systems

View full text Add to dashboard Cite

Distributed Denial-of-Service (DDoS) is a menace for service provider and prominent issue in network security. Defeating or defending the DDoS is a prime challenge. DDoS make a service unavailable for a certain time. This phenomenon harms the service providers, and hence, causes loss of business revenue. Therefore, DDoS is a grand challenge to defeat. There are numerous mechanism to defend DDoS, however, this paper surveys the deployment of Bloom Filter in defending the DDoS attack. The Bloom Filter is a probabilistic data structure for membership query that returns either true or false. Bloom Filter uses tiny memory to store information of large data. Therefore, packet information is stored in Bloom Filter to defend and defeat DDoS. This paper presents a survey on DDoS defending technique using Bloom Filter.

show abstract

Analysis of UDP DDoS flood cyber attack and defense mechanisms on Web Server with Linux Ubuntu 13

Cited by 33 publications

References 7 publications

Comprehensive Review of Artificial Intelligence and Statistical Approaches in Distributed Denial of Service Attack and Defense Methods

Comprehensive Review of Artificial Intelligence and Statistical Approaches in Distributed Denial of Service Attack and Defense Methods

A Survey of Protocol-Level Challenges and Solutions for Distributed Energy Resource Cyber-Physical Security

Preventing DDoS using Bloom Filter: A Survey

Contact Info

Product

Resources

About