Distributed defence against denial of service attacks: a practical view
Oke, Gulay and Loukas, Georgios (2008) Distributed defence against denial of service attacks: a practical view. In: Proceedings of the 2008 BCS International Conference on Visions of Computer Science. Electronic Workshops in Computing (eWiC) . British Computer Society (BCS), London, UK, pp. 153-162. ISBN 978-1-906124-08-3 ISSN 1477-9358Full text not available from this repository.
In recent years, Denial of Service attacks have evolved into a predominant network security threat. In our previous work, we identified the necessary building blocks for an effective defence mechanism and suggested ways to integrate them. Here, we present the results of this integration on the DoS-resilience of a real networking testbed which runs the Self-Aware CPN routing protocol. The incoming traffic at each node is monitored with a detection mechanism that is based on maximum likelihood estimation. In response to high probability of attack, the traffic is ratelimited proportionally to the measured probability. We illustrate the results of the experiments we have performed to demonstrate the efficiency of the distributed defence system that we propose.
|Item Type:||Conference Proceedings|
|Title of Proceedings:||Proceedings of the 2008 BCS International Conference on Visions of Computer Science|
|Additional Information:|| This paper was presented within Session 5, Decentralised and Complex Systems, of the 2008 BCS International Conference on Visions of Computer Science(VoCS) held from 22-24 September 2008, London, UK.|
|Uncontrolled Keywords:||Denial of Service, DoS, attack detection, rate-limiting, distributed response|
|Subjects:||Q Science > Q Science (General)|
|School / Department / Research Groups:||School of Computing & Mathematical Sciences|
|Last Modified:||28 Nov 2012 14:32|
Actions (login required)