TCP Based Denial-of-Service Attacks to Edge Network: Analysis and Detection
IR@C-MMACS: CSIR-Centre for Mathematical Modelling and Computer Simulation, Bangalore
View Archive InfoField | Value | |
Title |
TCP Based Denial-of-Service Attacks to Edge Network:
Analysis and Detection
|
|
Creator |
V., Anil Kumar
Dorgham , Sisalem |
|
Subject |
Computer Networks
Computer Programming and Software |
|
Description |
Congestion control algorithms in TCP are designed for a co-operative
environment with the assumption that the end hosts voluntarily participate in
the congestion control process. The steady growth of malicious activities such
as Denial-of-Service attacks (DoS) reveals that the Internet no longer remains
as a network of only trusted entities. We focus on a special class of DoS attacks
targeted to edge networks by exploiting the vulnerabilities of TCP congestion
control to duplicate and optimistic acknowledgement spoofing. We analyse two
DoS attack scenarios namely pulse and sustained attack arising from two different
behaviours of the attacker. Our results show that such attacks are feasible
and also reveal the negative impact of the attacks on the target. We present a
method for detecting such attacks by passively monitoring the traffic of the targeted
network. The detection is achieved by differentiating malicious streams
of duplicate and optimistic acknowledgments from normal acknowledgments.
…
|
|
Publisher |
Springer
|
|
Date |
2004
|
|
Type |
Article
PeerReviewed |
|
Format |
application/pdf
application/pdf application/pdf |
|
Identifier |
http://cir.cmmacs.ernet.in/40/1/tcp%2Ddos%2Danil.pdf
http://cir.cmmacs.ernet.in/40/2/tcp%2Ddos%2Danil.pdf http://cir.cmmacs.ernet.in/40/3/tcp%2Ddos%2Danil.pdf V., Anil Kumar and Dorgham , Sisalem (2004) TCP Based Denial-of-Service Attacks to Edge Network: Analysis and Detection. Lecture Notes on Computer Science, 3356. pp. 214-223. |
|
Relation |
http://www.springer.com/
http://cir.cmmacs.ernet.in/40/ |
|