Mitigating DoS Attacks Using Performance Model-Driven Adaptive Algorithms-Reference-Cited by-同舟云学术

Mitigating DoS Attacks Using Performance Model-Driven Adaptive Algorithms

Published:2014-03 Issue:1 Volume:9 Page:1-26
ISSN:1556-4665
Container-title:ACM Transactions on Autonomous and Adaptive Systems
language:en
Short-container-title:ACM Trans. Auton. Adapt. Syst.

Author:

Barna Cornel¹,Shtern Mark¹,Smit Michael²,Tzerpos Vassilios¹,Litoiu Marin¹

Affiliation:

1. York University

2. Dalhousie University

Abstract

Denial of Service (DoS) attacks overwhelm online services, preventing legitimate users from accessing a service, often with impact on revenue or consumer trust. Approaches exist to filter network-level attacks, but application-level attacks are harder to detect at the firewall. Filtering at this level can be computationally expensive and difficult to scale, while still producing false positives that block legitimate users. This article presents a model-based adaptive architecture and algorithm for detecting DoS attacks at the web application level and mitigating them. Using a performance model to predict the impact of arriving requests, a decision engine adaptively generates rules for filtering traffic and sending suspicious traffic for further review, where the end user is given the opportunity to demonstrate they are a legitimate user. If no legitimate user responds to the challenge, the request is dropped. Experiments performed on a scalable implementation demonstrate effective mitigation of attacks launched using a real-world DoS attack tool.

Funder

International Business Machines Corporation

Amazon

Natural Sciences and Engineering Research Council of Canada

Publisher

Association for Computing Machinery (ACM)

Subject

Software,Computer Science (miscellaneous),Control and Systems Engineering

Link

https://dl.acm.org/doi/pdf/10.1145/2567926

Reference48 articles.

1. APERA. 2009. Application Performance Evaluation and Resource Allocator (APERA). http://www.alphaworks.ibm.com/tech/apera. APERA. 2009. Application Performance Evaluation and Resource Allocator (APERA). http://www.alphaworks.ibm.com/tech/apera.

2. Asymptotic analysis of multiclass closed queueing networks: Multiple bottlenecks

3. Autonomic load-testing framework

4. Dobbins R. Morales C. Anstee D. Arruda J. Bienkowski T. Hollyman M. Labovitz C. Nazario J. Seo E. and Shah R. 2010. Worldwide InfrastructUre security report. Tech. rep. Arbor Networks. Dobbins R. Morales C. Anstee D. Arruda J. Bienkowski T. Hollyman M. Labovitz C. Nazario J. Seo E. and Shah R. 2010. Worldwide InfrastructUre security report. Tech. rep. Arbor Networks.

Cited by 7 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Intelligent resource management at the network edge using content delivery networks;Enterprise Information Systems;2022-02-16

2. Firewall Design and Implementation;Intelligent Security Systems;2021-09-24

3. From DevOps to BizOps;ACM Transactions on Autonomous and Adaptive Systems;2018-01-31

4. Challenges in Composing and Decomposing Assurances for Self-Adaptive Systems;Software Engineering for Self-Adaptive Systems III. Assurances;2017

5. Economics-driven resource scalability on the cloud;Proceedings of the 11th International Symposium on Software Engineering for Adaptive and Self-Managing Systems;2016-05-14