WebSOS: protecting web servers from DDoS attacks

Cook, Debra L.; Morein, William G.; Keromytis, Angelos D.; Misra, Vishal; Rubenstein, Dan

doi:10.1109/icon.2003.1266234

Cited by 25 publications

(13 citation statements)

References 16 publications

(16 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…An example is a database that maintains timely or confidential information such as building structure reports, intelligence, assignment updates, or strategic information. SOS assumes that there is a pre-determined subset of clients scattered throughout the wide-area network who require (and should have) access to this information, although more recent work [24] somewhat relaxes this requirement.…”

Section: Secure Overlay Services (Sos)mentioning

confidence: 98%

See 1 more Smart Citation

A holistic approach to service survivability

Keromytis

Parekh

Gross

et al. 2003

Proceedings of the 2003 ACM Workshop on Survivable and Self-Regenerative Systems: In Association With 10th ACM Conference on Co

View full text Add to dashboard Cite

We present SABER (Survivability Architecture: Block, Evade, React), a proposed survivability architecture that blocks, evades and reacts to a variety of attacks by using several security and survivability mechanisms in an automated and coordinated fashion.Contrary to the ad hoc manner in which contemporary survivable systems are built-using isolated, independent security mechanisms such as firewalls, intrusion detection systems and software sandboxes-SABER integrates several different technologies in an attempt to provide a unified framework for responding to the wide range of attacks malicious insiders and outsiders can launch.This coordinated multi-layer approach will be capable of defending against attacks targeted at various levels of the network stack, such as congestion-based DoS attacks, software-based DoS or code-injection attacks, and others. Our fundamental insight is that while multiple lines of defense are useful, most conventional, uncoordinated approaches fail to exploit the full range of available responses to incidents. By coordinating the response, the ability to survive successful security breaches increases substantially.We discuss the key components of SABER, how they will be integrated together, and how we can leverage on the promising results of the individual components to improve survivability in a variety of coordinated attack scenarios. SABER is currently in the prototyping stages, with several interesting open research topics.

show abstract

Section: Secure Overlay Services (Sos)mentioning

confidence: 98%

“…Attacks against the SOS infrastructure itself only cause a temporary disruption of communication, on the order of 10 seconds; furthermore, they must persist --otherwise the overlay will recover from component failures and re-integrate them seamlessly. More details can be found in [40,24,41]. …”

Section: Secure Overlay Services (Sos)mentioning

confidence: 99%

A holistic approach to service survivability

Keromytis

Parekh

Gross

et al. 2003

Proceedings of the 2003 ACM Workshop on Survivable and Self-Regenerative Systems: In Association With 10th ACM Conference on Co

View full text Add to dashboard Cite

show abstract

“…The approach in Cook et al (2003) and Keromytis et al (2002) uses an overlay network to forward packets from nodes that have proven their legitimacy, whereas traffic from all other nodes are filtered.…”

Section: Article In Pressmentioning

confidence: 99%

Provider-based deterministic packet marking against distributed DoS attacks

Siris

Stavrakis

2007

Journal of Network and Computer Applications

View full text Add to dashboard Cite

“…Using the web proxy feature and TLS, it requires no modification to web browsers and web servers. However, the first version [19] continued assuming a group of trusted clients, each having a public key certificate from the WebSOS administrator. The second version [20] attempted to solve this problem by using Graphic Turing Tests to separate human users from automated attackers.…”

Section: Overlay-based Defensementioning

confidence: 99%