DDoS attacks and defense mechanisms: classification and state-of-the-art

Douligeris, Christos; Mitrokotsa, Aikaterini

doi:10.1016/j.comnet.2003.10.003

Cited by 526 publications

(307 citation statements)

References 45 publications

Supporting

Mentioning

302

Contrasting

Unclassified

Order By: Relevance

“…The conventional security technologies such as firewalls [8] Intrusion Detection Systems (IDSs) [9] and access control lists in routers are unable to defend networks from App-DDoS attacks. The main reason is that, it is almost impossible to differentiate between legitimate and attack packets since the potency of flooding Distributed Denial of Service attacks depends only on the volume of attack traffic and does not depend upon the exploitation of software bugs or protocol vulnerabilities.…”

Section: Discussionmentioning

confidence: 99%

Protection from Application Layer DDoS Attacks for Popular Websites

Shrivastava¹

2013

IJCEE

View full text Add to dashboard Cite

Section: Discussionmentioning

confidence: 99%

Protection from Application Layer DDoS Attacks for Popular Websites

Shrivastava¹

2013

IJCEE

View full text Add to dashboard Cite

“…A denial of service (DoS) attack is an attempt to make a service, usually one offered over internet, unavailable to its legitimate users [1][2][3]. This can result in either temporary interruption in service by means of overwhelming the server with several requests or a permanent one that causes the server to crash.…”

Section: Distributed Denial Of Service Attacksmentioning

confidence: 99%

“…Such attacks can result in long term outages and can severely damage the reputation of an enterprise resulting in a decline of user trust. Thus it has become imperative to protect vulnerable servers against such attacks [1][2][3][4].…”

Section: B Effects Of Distributed Denial Of Service Attacksmentioning

confidence: 99%

“…Of all the attacks that hinder the availability of service, a denial of service attack poses maximum threat to an organization since it has direct effect on the service availability to a consumer. A denial of service attack results in a temporary or long-term nonavailability of a service to its intended users by the way of either crashing a service resulting in complete non-availability or by flooding a server with fraudulent requests thereby slowing down the delivery of service to real users [1]. Honeypot can be used as an intrusion detection mechanism that can replicate some or all actions of a server and effectively monitor potential attackers thereby enabling the server admins to detect and prevent potential denial of service attacks to ensure a reliable and continuous service to their intended users.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

HoneyMesh: Preventing Distributed Denial of Service Attacks using Virtualized Honeypots

Deshpande¹

2015

IJERT

View full text Add to dashboard Cite

Abstract-Today, internet and web services have become an inseparable part of our lives. Hence, ensuring continuous availability of service has become imperative to the success of any organization. But these services are often hampered by constant threats from myriad types of attacks. One such attack is called distributed denial of service attack that results in issues ranging from temporary slowdown of servers to complete non-availability of service. Honeypot, which is a sort of a trap, can be used to interact with potential attackers to deflect, detect or prevent such attacks and ensure continuous availability of service. This paper gives insights into the problems posed by distributed denial of service attacks, existing solutions that use honeypots and how a mesh of virtualized honeypots can be used to prevent distributed denial of service attacks.

show abstract

“…In connection with these trends, the question of computer networks security is starkly raised. Attackers have developed and actively use many types of network intrusion [1,2,3,4], most of which can be prevented by standard methods of protection.…”

Section: Introductionmentioning

confidence: 99%

Network Attack Detection at Flow Level

Galtsev

Sukhov

2011

Smart Spaces and Next Generation Wired/Wireless Networking

View full text Add to dashboard Cite

Abstract. In this paper, we propose a new method for detecting unauthorized network intrusions, based on a traffic flow model and Cisco NetFlow protocol application. The method developed allows us not only to detect the most common types of network attack (DDoS and port scanning), but also to make a list of trespassers' IP-addresses. Therefore, this method can be applied in intrusion detection systems, and in those systems which lock these IP-addresses.

show abstract

DDoS attacks and defense mechanisms: classification and state-of-the-art

Cited by 526 publications

References 45 publications

Protection from Application Layer DDoS Attacks for Popular Websites

Protection from Application Layer DDoS Attacks for Popular Websites

HoneyMesh: Preventing Distributed Denial of Service Attacks using Virtualized Honeypots

Network Attack Detection at Flow Level

Contact Info

Product

Resources

About