Cloud security defence to protect cloud computing against HTTP-DoS and XML-DoS attacks

Chonka, Ashley; Xiang, Yang; Zhou, Wanlei; Bonti, Alessio

doi:10.1016/j.jnca.2010.06.004

Cited by 203 publications

(103 citation statements)

References 17 publications

Supporting

Mentioning

101

Contrasting

Unclassified

Order By: Relevance

“…In their work, VMs with obsolete packages were marked with ICS (Image Creation Station) and the starting of a VM with obsolete packages was prevented by XGE (Xen Grid Engine) [15]. HTTP DoS (HDoS) and XML DoS (XDoS) attacks are comparatively easy to accomplish but twice as hard for the security experts to protect against [16]. Chonka et al [16] in their study claimed to provide protection against HDoS and XDoS attacks using a trace back mechanism they named Cloud Trace Back (CTB).…”

Section: Related Workmentioning

confidence: 99%

“…HTTP DoS (HDoS) and XML DoS (XDoS) attacks are comparatively easy to accomplish but twice as hard for the security experts to protect against [16]. Chonka et al [16] in their study claimed to provide protection against HDoS and XDoS attacks using a trace back mechanism they named Cloud Trace Back (CTB). Hop-count filtering [17] uses information about a source IP address and its corresponding hops from a destination that are recorded in a table at the destination side when the destination is not under attack.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

SYN Flood Attack Prevention using Particle Swarm Optimization in Cloud Computing Environment

Ahmed¹,

Mahbub²

2017

IJCA

View full text Add to dashboard Cite

Security issues in Cloud Computing is growing as it continues to offer innovative business model and collaboration capabilities for organizations to boost productivity. There are numerous security issues for cloud computing as it encompasses many technologies including networks, virtualization, resource scheduling, load balancing, concurrency control and memory management. A Cloud infrastructure that comprises the vulnerability of Denial of Service (DoS) attacks denies legitimate users from accessing information or services. A DoS attack can be launched in the transport layer using the very old, but still effective, SYN Flood technique. In a SYN flood attack the attacker sends a flood of TCP SYN requests that gets the server busy without actually completing the three-way handshake procedure used in the setup of TCP sessions. This paper presents a Particle Swarm Optimization (PSO) based approach to enhance the defence mechanism of the system against such attacks. The theoretical analysis and simulations show that the proposed optimization model analyses the situation of under attack server and based on the intensity of the attack situation, it provides the best solution to the server. The server can tune itself dynamically to the optimized solution which increases its chance against SYN Flood attacks.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

SYN Flood Attack Prevention using Particle Swarm Optimization in Cloud Computing Environment

Ahmed¹,

Mahbub²

2017

IJCA

View full text Add to dashboard Cite

show abstract

“…Authors of [148] test a cloud traceback model using back propagation neural network called Cloud Protector, which is trained to detect and filter DDoS attack traffic in cloud environment. More studies on DDoS related issues in cloud computing environments can be found in [149][150][151][152][153].…”

Section: Ddos Defense In Cloud Computing Environmentmentioning

confidence: 99%

A Survey on DDoS Attack and Defense Strategies: From Traditional Schemes to Current Techniques

Aamir

Zaidi

2013

IIS

View full text Add to dashboard Cite

Distributed Denial of Service (DDoS) attacks exhaust victim's bandwidth or services. Traditional architecture of Internet is vulnerable to DDoS attacks and an ongoing cycle of attack & defense is observed. A recent attack report of year 2013 -'Quarter 1' from Prolexic Technologies identifies that 1.75 percent increase in total number of DDoS attacks has been recorded as compared to similar attacks of previous year's last quarter. In this paper, different types and techniques of DDoS attacks and their countermeasures are surveyed. The significance of this paper is the coverage of many aspects of countering DDoS attacks including new research on the topic. We survey different papers describing methods of defense against DDoS attacks based on entropy variations, traffic anomaly parameters, neural networks, device level defense, botnet flux identifications, application layer DDoS defense and countermeasures in wireless networks, CCN & cloud computing environments. We also discuss some traditional methods of defense such as traceback and packet filtering techniques, so that readers can identify major differences between traditional and current techniques of defense against DDoS attacks. We identify that application layer DDoS attacks possess the ability to produce greater impact on the victim as they are driven by legitimate-like traffic, making it quite difficult to identify and distinguish from legitimate requests. The need of improved defense against such attacks is therefore more demanding in research. The study conducted in this paper can be helpful for readers and researchers to recognize better techniques of defense in current times against DDoS attacks and contribute with more research on this topic in the light of future challenges identified in this paper.

show abstract

“…The other type of cloud is Software as a Service (SaaS). Under this service, users are allowed to access cloud infrastructure and application via end-user devices like a web browser [5]. A cloud service provider could provide services to the clients as private clouds or public cloud or hybrid or community clouds.…”

Section: Introductionmentioning

confidence: 99%

“…This allows many institutions to cut on IT infrastructure, application and manpower resources. Like other utilities, the cloud could also be managed as "metering" service [5]. The cloud usage could be monitored, controlled and reported, this in turn allows transparency for both the provider and consumer of the service.…”

Section: Introductionmentioning

confidence: 99%

Impediment of Privacy in the Use of Clouds by Educational Institutions

Sarabdeen

Ishak

2015

JAIT

View full text Add to dashboard Cite

Abstract-Cloud computing is considered as one of the technologies that revolutionizing the educational sector. Innovation of nascent interactive and user friendly educational tools and resources helps in the improvement of students' academic performance. The technology revolutionized the delivery of educational tools and materials shifting from educator-centric to student-centric. The cloud based education spur considerable interest among the students. The technology adoption theories found that students were satisfied and motivated by the cloud-based learning environment and were adopting it as their lifestyle. While the adoption is impressive, the concern for privacy is real. The laws in US, EU countries and UAE are not directly addressing the privacy and data protection issues in clouds. However, the existing laws could be extended to cover the cloud service use by educational institutions and protection of personal data. The major issue in protecting privacy of students and others is the extra-jurisdiction effect of the Patriot Act and Foreign Intelligence and Surveillance Act (FISA) of US. These laws give opportunities to the US regulators to access and use private data of various parties in US and beyond for security reasons. 

show abstract

Cloud security defence to protect cloud computing against HTTP-DoS and XML-DoS attacks

Cited by 203 publications

References 17 publications

SYN Flood Attack Prevention using Particle Swarm Optimization in Cloud Computing Environment

SYN Flood Attack Prevention using Particle Swarm Optimization in Cloud Computing Environment

A Survey on DDoS Attack and Defense Strategies: From Traditional Schemes to Current Techniques

Impediment of Privacy in the Use of Clouds by Educational Institutions

Contact Info

Product

Resources

About