| Publisher | Chalmers University of Technology | ||
|---|---|---|---|
| Format | 233.0KB PDF | Date added | 25 Jul 2008 |
| Topics | Denial of Service | ||
| Downloads | 0 | ||
A weak point in network-based applications is that they commonly open some known communication port(s), making themselves targets for Denial of Service (DoS) attacks. Considering adversaries that can eavesdrop and launch directed DoS attacks to the applications' open ports, solutions based on pseudo-random port-hopping have been suggested. As port-hopping needs that the communicating parties hop in a synchronized manner, these solutions suggest acknowledgment-based protocols between a client-server pair or assume the presence of synchronized clocks. Acknowledgments, if lost, can cause a port to be open for a longer time and thus be vulnerable to DoS attacks; Time servers for synchronizing clocks can become targets to DoS attack themselves. Here one studies the case where the communicating parties have clocks with rate drift, which is common in networking.
Did you find this white paper useful?
1 out of 2 users found this white paper useful
Related white papers
Why Your Standard IPS Leaves You Open to DDoS Attacks
Off late Distributed Denial of Service (DDoS) attacks are specifically designed to leverage the weaknesses of a standard Intrusion Prevention System (IPS), which is not able to defend against a...
A Hybrid Agent-Based Classification Mechanism to Detect Denial of Service Attacks
This paper presents the core component of a solution based on agent technology specifically adapted for the classification of SOAP messages. The messages can carry out attacks that target the...
Pushing Security to the Perimeter: Trusted Computing Technology Adapts to Changing Enterprise Needs
Security concerns, identity theft and regulatory compliance requirements are converging to drive the enterprise's need for strong identity and access management (IAM) solutions. These solutions can include enterprise single sign-on...
Crossbow: A Vertically Integrated QoS Stack
This paper describes a new architecture which addresses Quality of Service (QoS) by creating unique flows for applications, services, or subnets. A flow is a dedicated and independent path from...
The dirty dozen: preventing common application-level hack attacks
As organizations have grown increasingly dependent on online software, the risk of malicious attacks has also become far more serious. Such attacks can bring a business to a standstill, cost...
DDoS Defense Mechanism by Applying Stamps
In current trend, internet plays a vital role in the life and distributed computing structure grows dramatically in size, functionality and complexity and has become the integral part of the...
Using NetFlow Auditor to Assist in Identifying Distributed Denial-of-Service (DDoS) Attacks and Other Network Behavior Anomalies
This Paper covers how Denial of Service Attacks (DoS) and Distributed Denial of Service Attacks (DDos) can be identified early to mitigate and attack. The paper will reflect a method...
