DDoS attacks in cloud computing: Collateral damage to non-targets

Somani, Gaurav; Gaur, Manoj Singh; Sanghi, Dheeraj; Conti, Mauro

doi:10.1016/j.comnet.2016.03.022

Cited by 71 publications

(55 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…When the flooding of requests exceeds the computational capabilities of the hired services, the auto-scaling processes trigger the need of contract additional resources, which increases the bill that the client must pay. Sonami et al [14] studied the consequences of this increasing of costs, which have distinct impacts depending on the side. For example, in addition to the impact on the offered Quality of Service, the economic losses may become unsustainable for the clients, and consequently they probably will try to find a more profitable provider.…”

Section: Economic Denial Of Sustainability Attacksmentioning

confidence: 99%

“…Because of this, Singh et al formally defined EDoS attacks as "threats which target is to make the costing model unsustainable and therefore making it no longer viable for a company to affordability use or pay for their Cloud-based infrastructure" [12]. EDoS are also tagged in the bibliography as Reduction of Quality (RoQ) threats [13], or Fraudulent Resource Consumption attacks (FRC) [14]. These intrusions take advantage of the "pay-as-you-go" accounting model offered by most of the Cloud Computing providers and their auto-scaling services [15].…”

Section: Economic Denial Of Sustainability Attacksmentioning

confidence: 99%

“…Note that they are widely studied in the bibliography, which vary according to the management services. Examples of well-known local-level metrics are: CPU utilization, warming time, response time, number of I/O requests, bandwidth or memory consumption [13,14]. Because of its relevance in the recent Cloud computing commercial solutions (e.g., Google Cloud, Amazon EC2, etc.)…”

Section: Monitoring and Aggregationmentioning

confidence: 99%

“…However, attackers may exploit vulnerabilities (usually at Application layer) to extend their impact [14].…”

Section: Edos Attack Detectionmentioning

confidence: 99%

See 3 more Smart Citations

Entropy-Based Economic Denial of Sustainability Detection

Monge

Vidal

Villalba

2017

Entropy

View full text Add to dashboard Cite

In recent years, an important increase in the amount and impact of Distributed Denial of Service (DDoS) threats has been reported by the different information security organizations. They typically target the depletion of the computational resources of the victims, hence drastically harming their operational capabilities. Inspired by these methods, Economic Denial of Sustainability (EDoS) attacks pose a similar motivation, but adapted to Cloud computing environments, where the denial is achieved by damaging the economy of both suppliers and customers. Therefore, the most common EDoS approach is making the offered services unsustainable by exploiting their auto-scaling algorithms. In order to contribute to their mitigation, this paper introduces a novel EDoS detection method based on the study of entropy variations related with metrics taken into account when deciding auto-scaling actuations. Through the prediction and definition of adaptive thresholds, unexpected behaviors capable of fraudulently demand new resource hiring are distinguished. With the purpose of demonstrate the effectiveness of the proposal, an experimental scenario adapted to the singularities of the EDoS threats and the assumptions driven by their original definition is described in depth. The preliminary results proved high accuracy.

show abstract

Section: Economic Denial Of Sustainability Attacksmentioning

confidence: 99%

Section: Economic Denial Of Sustainability Attacksmentioning

confidence: 99%

Section: Monitoring and Aggregationmentioning

confidence: 99%

“…However, attackers may exploit vulnerabilities (usually at Application layer) to extend their impact [14].…”

Section: Edos Attack Detectionmentioning

confidence: 99%

See 2 more Smart Citations

Entropy-Based Economic Denial of Sustainability Detection

Monge

Vidal

Villalba

2017

Entropy

View full text Add to dashboard Cite

show abstract

“…The target could be a servers computing capability or network bandwidth such that the legal users could not access the services provided ( Figure 2). EDoS attack is a special breed of DDoS attack that attack exploits auto scaling feature of cloud computing [9]. In EDoS attack, the goal in mind of the attacker is to manipulate service usage billing in orders of magnitude that could be disguised easily as legitimate use of the service [10].…”

Section: Figure 1 Cloud Computing Characteristics Service and Deplmentioning

confidence: 99%

Mitigating Economic Denial of Sustainability Attacks to Secure Cloud Computing Environments

Zekri

Kafhali

Hanini

et al. 2017

TMLAI

View full text Add to dashboard Cite

In cloud computing environment where the infrastructure is shared by millions of users, attackers have the opportunity to ensure more damage to the compromised resources. The main aim of such attacks is to saturate and overload the system network through a massive data packets size flooding toward a victim server and to block the service to customers. The Distributed Denialofservice (DDoS) attack is considered one of the largest threats to the Quality of Service (QoS) of cloud services which is used to deny access for legitimate users of an online service. However, Economic Denial of Sustainability (EDoS) attack is a special breed of DDoS attack that attack exploits auto scaling feature of cloud. The Cloud Service Provider (CSP) scales the architecture automatically to serve those requests for which cloud consumer is charged. A consumer expects a sustainable profit after hosting his application on cloud. The attacker purpose is to guarantee the service unavailability and maximize the financial loss costs by increasing the cost and decreasing the profit. Hence, in this paper we propose a novel mitigation system against the EDoS attacks. Our system consists of source Checking, Counting, and Turing Test. The obtained simulation results show that our system works efficiently to mitigate the EDoS attack in cloud environment.

show abstract

Uncovering collateral damages and advanced defense strategies in cloud environments against DDoS attacks: A comprehensive review

Verma,

Bharot,

Breslin

et al. 2024

Trans Emerging Tel Tech

View full text Add to dashboard Cite

Cloud computing (CC) offers on‐demand computing and resources to users, and organizations, and is also used in many human‐centric intelligent systems. Attacks in cloud networks cause huge damage to service providers and users. Distributed Denial of Service (DDoS) is one of them that greatly impacts the cloud network. The unavailability of resources is the major concern pertaining to cloud service and resources. Apart from the direct targets of a DDoS attack, there are also indirect effects on non‐targets within a cloud network. These effects on the non‐target stakeholders of the cloud are called collateral damages. However, this area of research is not explored much by researchers. Thus, the defense methods pertaining to direct and indirect effects need to be explored. This article aims to describe the consequences of DDoS attacks and the solutions available in the cloud network. The novelty of this article lies in shedding light on the indirect impacts of DDoS in cloud networks and possible solution approaches. The article also provides a comparative analysis of the existing defense solution under different categories and available tools and datasets to evaluate the proposed solutions. The article also mentions the solution considerations and effective solution scenarios. The idea behind this article is to impart guidelines to the researchers, for developing efficient defense solutions against direct target and indirect target DDoS attacks. Moreover, the research shortcomings, pros–cons, and existing challenges are outlined, and directions for future research are mentioned.

show abstract

DDoS attacks in cloud computing: Collateral damage to non-targets

Cited by 71 publications

References 21 publications

Entropy-Based Economic Denial of Sustainability Detection

Entropy-Based Economic Denial of Sustainability Detection

Mitigating Economic Denial of Sustainability Attacks to Secure Cloud Computing Environments

Uncovering collateral damages and advanced defense strategies in cloud environments against DDoS attacks: A comprehensive review

Contact Info

Product

Resources

About