Your Cache Has Fallen

Nguyen, Hoai Viet; Iacono, Luigi Lo; Federrath, Hannes

doi:10.1145/3319535.3354215

Cited by 19 publications

(7 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Hoai Viet Nguyen and Luigi Lo Iacono in their paper [12]. talked about the new system of web store attacks.…”

Section: Literature Reviewmentioning

confidence: 99%

“…and conjointly the attackers. Next, in keeping with Cisco, the entire variety of DDoS attacks have seen around seven.9 billion in 2018 and it'll be doubled one thing over fifteen million at intervals 2023 [12] . as a result of around 2023, the number of web users is going to be 5.3 billion [12].…”

Section: Introductionmentioning

confidence: 99%

“…Next, in keeping with Cisco, the entire variety of DDoS attacks have seen around seven.9 billion in 2018 and it'll be doubled one thing over fifteen million at intervals 2023 [12] . as a result of around 2023, the number of web users is going to be 5.3 billion [12]. These DDoS attacks bare the inherent at intervals the govt infrastructure and conjointly the shortage of security measures in place.…”

Section: Introductionmentioning

confidence: 99%

“…Banking and e-commerce sites are prime targets for DDoS attacks. Moreover, in 2016 the biggest DDoS attack was directed at force unit a serious DNS supplier in Oct 2016 [12]. The attack was massively tumultuous and brought down the websites of over eighty of its customers together with amazon, Netflix, Airbnb, Spotify, Twitter, PayPal and Reddit employing malware known as Mirai hackers created an enormous botnet of a hundred thousand webs of things.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Mitigating DDoS Attacks Using a Resource Sharing Network

Khan

Hossain

Shanto

et al. 2022

Proceedings of the 9th International Conference on Networking, Systems and Security

View full text Add to dashboard Cite

Cloud computing is crucial to the internet just as air is crucial to breathing. Most users do not even come to think how the cloud architecture is one of the giant pillars on which the entire internet and all its related services depend. In recent times, cloud computing has gained noticeable popularity due to its ability to radically improve computing power through the application of virtual machines. In this era of the internet, however, security threats are increasing and it costs many businesses. The seemingly legitimate traffic of these application-level attacks renders the previous detection and mitigation methods ineffective. These cyber-attacks have grown ever so sophisticated and the detection and mitigation of these attacks have become one of the major concerns of security researchers and cloud service providers all around the globe. In our paper, we are trying to analyze existing research and implementation of the cloud architecture. This analysis will give us insight into the core mechanisms of the cloud architecture and DDoS attacks. Furthermore, we will apply this understanding of ours to design and build an universal mitigation technique for DDoS attacks. An universal solution that works for all scenarios, may take at least a few dozen developers working years on end to develop. Therefore, the goal of this paper will be to lay the foundation on which one day the universal solution may be created.

show abstract

“…Hoai Viet Nguyen and Luigi Lo Iacono in their paper [12]. talked about the new system of web store attacks.…”

Section: Literature Reviewmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Mitigating DDoS Attacks Using a Resource Sharing Network

Khan

Hossain

Shanto

et al. 2022

Proceedings of the 9th International Conference on Networking, Systems and Security

View full text Add to dashboard Cite

show abstract

“…These issues fundamentally result from HTTP processing discrepancies between different servers, as opposed to bugs that can be squished by a single technology vendor. The research community has built on this work and demonstrated that automated discovery of novel vulnerabilities impacting any given server combination is viable-and very effective [9], [10], [22]- [24]. Thus, it is crucial that security professionals adapt to this new threat model, and employ technologies that can accurately identify and test layered servers.…”

Section: Introductionmentioning

confidence: 99%

Untangle: Multi-Layer Web Server Fingerprinting

Topcuoglu,

Onarlioglu,

Jabiyev

et al. 2024

Proceedings 2024 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

Web server fingerprinting is a common activity in vulnerability management and security testing, with network scanners offering the capability for over two decades. All known fingerprinting techniques are designed for probing a single, isolated web server. However, the modern Internet is made up of complex layered architectures, where chains of CDNs, reverse proxies, and cloud services front origin servers. That renders existing fingerprinting tools and techniques utterly ineffective.We present the first methodology that can fingerprint servers in a multi-layer architecture, by leveraging the HTTP processing discrepancies between layers. This technique is capable of detecting both the server technologies involved and their correct ordering. It is theoretically extendable to any number of layers, any server technology, deployed in any order, but of course within practical constraints. We then address those practical considerations and present a concrete implementation of the scheme in a tool called Untangle, empirically demonstrating its ability to fingerprint 3-layer architectures with high accuracy.

show abstract

Less is Often More: Header Whitelisting as Semantic Gap Mitigation in HTTP-Based Software Systems

Büttner

Nguyen

Gruschka

et al. 2021

IFIP Advances in Information and Communication Technology

Self Cite

View full text Add to dashboard Cite

The web is the most wide-spread digital system in the world and is used for many crucial applications. This makes web application security extremely important and, although there are already many security measures, new vulnerabilities are constantly being discovered. One reason for some of the recent discoveries lies in the presence of intermediate systems-e.g. caches, message routers, and load balancers-on the way between a client and a web application server. The implementations of such intermediaries may interpret HTTP messages differently, which leads to a semantically different understanding of the same message. This so-called semantic gap can cause weaknesses in the entire HTTP message processing chain. In this paper we introduce the header whitelisting (HWL) approach to address the semantic gap in HTTP message processing pipelines. The basic idea is to normalize and reduce an HTTP request header to the minimum required fields using a whitelist before processing it in an intermediary or on the server, and then restore the original request for the next hop. Our results show that HWL can avoid misinterpretations of HTTP messages in the different components and thus prevent many attacks rooted in a semantic gap including request smuggling, cache poisoning, and authentication bypass.

show abstract

Your Cache Has Fallen

Cited by 19 publications

References 13 publications

Mitigating DDoS Attacks Using a Resource Sharing Network

Mitigating DDoS Attacks Using a Resource Sharing Network

Untangle: Multi-Layer Web Server Fingerprinting

Less is Often More: Header Whitelisting as Semantic Gap Mitigation in HTTP-Based Software Systems

Contact Info

Product

Resources

About