Controlled Virtual Resource Access to Mitigate Economic Denial of Sustainability (EDoS) Attacks against Cloud Infrastructures

Baig, Zubair A.; Binbeshr, Farid

doi:10.1109/cloudcom-asia.2013.51

Cited by 22 publications

(12 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Hidden Servers/ Ports (P2) [37] Moving target approach to hide the servers [32] Secure ephemeral servers with authentication [40] Limits number of connections on hidden ports [41] Moving targets using server replica shuffling [42] Hidden server only visible to benign users [50] Proxy forwards benign requests to the server Restrictive Access (P3) [43] Admission control based on delayed response [44] Human behavior (rate) detection and access [32] Client reputation based prioritized access [40] Admission control puzzles and hidden ports…”

Section: Hidden Servers/ports (P2)mentioning

confidence: 99%

DDoS attacks in cloud computing: Issues, taxonomy, and future directions

Somani

Gaur

Sanghi

et al. 2017

Computer Communications

238

102

View full text Add to dashboard Cite

Security issues related to the cloud computing are relevant to various stakeholders for an informed cloud adoption decision. Apart from data breaches, the cyber security research community is revisiting the attack space for cloud-specific solutions as these issues affect budget, resource management, and service quality. Distributed Denial of Service (DDoS) attack is one such serious attack in the cloud space. In this paper, we present developments related to DDoS attack mitigation solutions in the cloud. In particular, we present a comprehensive survey with a detailed insight into the characterization, prevention, detection, and mitigation mechanisms of these attacks. Additionally, we present a comprehensive solution taxonomy to classify DDoS attack solutions. We also provide a comprehensive discussion on important metrics to evaluate various solutions. This survey concludes that there is a strong requirement of solutions, which are designed keeping utility computing models in mind. Accurate auto-scaling decisions, multi-layer mitigation, and defense using profound resources in the cloud, are some of the key requirements of the desired solutions. In the end, we provide a definite guideline on effective solution building and detailed solution requirements to help the cyber security research community in designing defense mechanisms. To the best of our knowledge, this work is a novel attempt to identify the need of DDoS mitigation solutions involving multi-level information flow and effective resource management during the attack.

show abstract

Section: Hidden Servers/ports (P2)mentioning

confidence: 99%

DDoS attacks in cloud computing: Issues, taxonomy, and future directions

Somani

Gaur

Sanghi

et al. 2017

Computer Communications

238

102

View full text Add to dashboard Cite

show abstract

“…The extended values are: grep template.properties files, checking the template files or others (Baig and Binbeshr, 2013).…”

Section: Entering Wrong Passwordmentioning

confidence: 99%

“…With a prepared dictionary, the attack is completed by performing the grep command to get specific information. The extended values of this indicator are: virsh command, dump command or string command (Baig and Binbeshr, 2013).…”

Section: Entering Wrong Passwordmentioning

confidence: 99%

See 1 more Smart Citation

Hierarchical detection of insider attacks in cloud computing systems

Jarrah

Ayoub

Jararweh

2017

IJICS

View full text Add to dashboard Cite

Abstract:Cloud computing has emerged as a new computing paradigm with enormous benefits that have attracted many businesses and service providers. As a result, it is critical to ensure highly available and resilient cloud system that continues to operate correctly under different circumstances. This is endangered by risks of cloud insider attacks. In this work, we propose an artificial intelligence based system to detect cloud insider attacks. A hierarchical detection system is used to ensure high detection accuracy and speed. In the first layer, we use a simple expert system to classify the insider as a normal, an attacker, or a probable attacker. The system reacts accordingly by allowing normal insiders to continue their work, blocking attackers, and performing further investigation on probable attackers in the second layer using a decision tree. Simulation results show that our system is able to detect insider attacks with 99.67% detection accuracy.

show abstract

“…It has provided its users to use the data resources with the minimal data overhead. Cloud computing has three service models, four deployment models and five main characteristics [5] . These five characteristics have been shown in Fig.…”

Section: In Cloud Platformmentioning

confidence: 99%

Energy Aware Supervised Pattern Attack Recognition Technique for Mitigation of EDoS Attacks in Cloud Platform

Daffu¹,

Morinda²,

Kaur³

2018

IJWMT

View full text Add to dashboard Cite

Cloud computing is a rapidly growing technology in this new era. Cloud is a platform where users get charged on the basis of the services and resources they have used. It enables its users to access the cloud resources from the remote locations i.e. from anywhere at any time. It needs only a working internet connection to access the cloud services. Cloud users have always been victim to the security issues and attacks which leads to the data loss. The data is not saved on the hard disk of the computer so it is highly prone to security risks. Identifying the attacks on cloud platform is a difficult task because everything on cloud is in virtual form. EDoS (Economic Denial of Sustainability) attack is a form of DDoS attacks; carried out for a long span of time and intended to put a financial burden and cause economical loss to the users of cloud. Such attacks do not exhaust the bandwidth of the user; their main aim is to put a huge financial loss or burden on the user. A technique named as SPART (Supervised Pattern Attack Recognition Technique) implemented to mitigate the EDoS attacks in cloud computing which consumes lesser energy as compared to the existing models. The experimental results have shown the less energy consumption in proposed model.

show abstract

Controlled Virtual Resource Access to Mitigate Economic Denial of Sustainability (EDoS) Attacks against Cloud Infrastructures

Cited by 22 publications

References 18 publications

DDoS attacks in cloud computing: Issues, taxonomy, and future directions

DDoS attacks in cloud computing: Issues, taxonomy, and future directions

Hierarchical detection of insider attacks in cloud computing systems

Energy Aware Supervised Pattern Attack Recognition Technique for Mitigation of EDoS Attacks in Cloud Platform

Contact Info

Product

Resources

About