Demystifying and Rate Limiting ICMP hosted DoS/DDoS Flooding Attacks with Attack Productivity Analysis

Udhayan, J.; Anitha, R.

doi:10.1109/iadcc.2009.4809072

Cited by 19 publications

(5 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Previous efforts on reconnaissance detection are limited to detecting port scans. For instance, Udhayan et al [35] detect port scanning attempts by applying a set of heuristics on the connection timing and TCP header fields. Allen et al [8] note that port scanning tools leave detectable features in the generated requests.…”

Section: Chapter 2 Related Workmentioning

confidence: 99%

Soteria: An Approach for Detecting Multi-Institution Attacks

Zabarah

Naman

Salahuddin

et al. 2023

2023 26th Conference on Innovation in Clouds, Internet and Networks and Workshops (ICIN)

View full text Add to dashboard Cite

Please read the Statement of Contributions for details. This is a true copy of the thesis, including any required final revisions, as accepted by my examiners.I understand that my thesis may be made electronically available to the public. Statement of ContributionsThe results of this work are descirbed in a paper that is under review at the 26 th Conference on Innovation in Clouds, Internet and Networks. I am the first author of this work and it was done in collaboration with Omar Naman under the supervision of Prof. Raouf Boutaba and Prof. Samer Al-Kiswany. Omar helped with surveying related work and writing the related work chapter.

show abstract

Section: Chapter 2 Related Workmentioning

confidence: 99%

Soteria: An Approach for Detecting Multi-Institution Attacks

Zabarah

Naman

Salahuddin

et al. 2023

2023 26th Conference on Innovation in Clouds, Internet and Networks and Workshops (ICIN)

View full text Add to dashboard Cite

show abstract

“…The ping request and ICMP flooding can be mitigated by turning pings off from external networks and rate-limiting the ICMP traffic, respectively, to prevent the bandwidth and firewall performance from being impacted [111][112][113][114]. Attacks exploiting plain-text data can be avoided by using security architecture such as IP-Sec or transport access control [115].…”

Section: Network (Layer 3)mentioning

confidence: 99%

A Survey of Protocol-Level Challenges and Solutions for Distributed Energy Resource Cyber-Physical Security

et al. 2018

View full text Add to dashboard Cite

The increasing proliferation of distributed energy resources (DERs) on the smart grid has made distributed solar and wind two key contributors to the expanding attack surface of the network; however, there is a lack of proper understanding and enforcement of DER communications security requirements. With vendors employing proprietary methods to mitigate hosts of attacks, the literature currently lacks a clear organization of the protocol-level vulnerabilities, attacks, and solutions mapped to each layer of the logical model such as the OSI stack. To bridge this gap and pave the way for future research by the authors in determining key DER security requirements, this paper conducts a comprehensive review of the key vulnerabilities, attacks, and potential solutions for solar and wind DERs at the protocol level. In doing so, this paper serves as a starting point for utilities, vendors, aggregators, and other industry stakeholders to develop a clear understanding of the DER security challenges and solutions, which are key precursors to comprehending security requirements.

show abstract

“…JavaScript program as a part of the web page, which is first parsed in the client browser, is compiled into internal byte codes and followed by the JavaScript engine processing [7]. In order to track the use of sensitive information in JavaScript program, the function of JavaScript engine is need to extend, which is embodied in the semantics of extended byte codes instruction, so that the stain information can be effectively diffused.…”

Section: Analysis Of Stain Transmissionmentioning

confidence: 99%

Research on Client-side Defense Techniques of Cross-Site Scripting Attack

Wang¹,

Xu²

2017

Proceedings of the 2016 7th International Conference on Education, Management, Computer and Medicine (EMCM 2016)

View full text Add to dashboard Cite

Abstract. The Cross-site scripting (XSS) is among the most serious and common threat in Web application today. The main purpose of XSS is to steal the user's sensitive information, as its behavior is to send user's sensitive information to a third party without the user's authorization,we can get the XSS attack detection results by analyzing the situation of user's accessing sensitive information in current page. The detection technique presented in this paper adopts the idea of protecting user information in client-side of the Web browser. By analyzing its JavaScript engine, we extend its handle process in each phase. Our approach employs dynamic analysis techniques in general, and an auxiliary static analysis technique when necessary to analyze the situation of sensitive information in current page. By handling and judging the analysis result, we can prevent the suspicious XSS attack. If sensitive information is about to transferred to a third party, the user can decide id this should be permitted or not. The result of our experiment has demonstrated that the behavior-based XSS detection technique proposed in this paper is feasible in practice model.

show abstract

Demystifying and Rate Limiting ICMP hosted DoS/DDoS Flooding Attacks with Attack Productivity Analysis

Cited by 19 publications

References 6 publications

Soteria: An Approach for Detecting Multi-Institution Attacks

Soteria: An Approach for Detecting Multi-Institution Attacks

A Survey of Protocol-Level Challenges and Solutions for Distributed Energy Resource Cyber-Physical Security

Research on Client-side Defense Techniques of Cross-Site Scripting Attack

Contact Info

Product

Resources

About