| Autor: |
Sobh, Tarek, Elleithy, Khaled, Mahmood, Ausif, Karim, Mohammed, Sardana, Anjali, Gandhi, Bhavana, Joshi, Ramesh |
| Zdroj: |
Innovative Algorithms & Techniques in Automation, Industrial Electronics & Telecommunications; 2007, p49-54, 6p |
| Abstrakt: |
Denial of Service Denial of Service (DoS) attacks pose a severe security threat to the steady functioning of any network. These attacks aim at depleting the resources of a server or an administrative network by overwhelming it with enormous and useless traffic. The outcome of this is the fact that legitimate users are denied service. Though an array of schemes has been proposed for the detection of the presence of these attacks, characterizing of the flows as a normal flow or a malicious one, identifying the sources of the attacks and mitigating the effects of the attacks once they have been detected, there is still a dearth of complete frameworks that encompass multiple stages of the process of defense against DoS attacks. In this paper, we propose a novel framework which deals with the characterization of the TCP and UDP flows, identification of the source of the flow once it has been characterized as an attack flow and mitigating the influence of the attack. The characterization of the flows has been achieved by an innovative Exactly Periodic Subspace Decomposition (EPSD) based approach, whereas a proactive roaming honeypot scheme has been deployed for the identification of the source of the attack flow and mitigation of the effects of the same. We validate the effectiveness of the approach with simulation in ns-2 on a Linux platform. [ABSTRACT FROM AUTHOR] |
| Databáze: |
Supplemental Index |
| Externí odkaz: |
|
