ON THE DESIGN OF A LOW-RATE DOS ATTACK AGAINST ITERATIVE SERVERS

Gabriel Maciá-Fernández; Jesús E. Díaz-Verdejo; Pedro García-Teodoro

doi:10.5220/0002103301490156

ON THE DESIGN OF A LOW-RATE DOS ATTACK AGAINST ITERATIVE SERVERS

Gabriel Maciá-Fernández, Jesús E. Díaz-Verdejo, Pedro García-Teodoro

2006

Abstract

Recent research exposes the vulnerability of current networked applications to a family of low-rate DoS attacks based on timing mechanisms. A kind of those attacks is targeted against iterative servers and employs an ON/OFF scheme to send attack packets during the chosen critical periods. The overall behaviour of the attack is well known and its effectiveness has been demonstrated in previous works. Nevertheless, it is possible to achieve a trade off between the performance of the attack and its detectability. This can be done by tuning some parameters of the attack waveform according to the needs of the attacker and the deployed detection mechanisms. In this paper, a mathematical model for the relationship among those parameters and their impact in the performance of the attack is evaluated. The main goal of the model is to provide a better understanding of the dynamics of the attack, which is explored through simulation. The results obtained point out the model as accurate, thus providing a framework feasible to be used to tune the attack.

Download

Paper Citation

in Harvard Style

Maciá-Fernández G., E. Díaz-Verdejo J. and García-Teodoro P. (2006). ON THE DESIGN OF A LOW-RATE DOS ATTACK AGAINST ITERATIVE SERVERS . In Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006) ISBN 978-972-8865-63-4, pages 149-156. DOI: 10.5220/0002103301490156

in Bibtex Style

@conference{secrypt06,
author={Gabriel Maciá-Fernández and Jesús E. Díaz-Verdejo and Pedro García-Teodoro},
title={ON THE DESIGN OF A LOW-RATE DOS ATTACK AGAINST ITERATIVE SERVERS},
booktitle={Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006)},
year={2006},
pages={149-156},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002103301490156},
isbn={978-972-8865-63-4},
}

in EndNote Style

TY - CONF
JO - Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006)
TI - ON THE DESIGN OF A LOW-RATE DOS ATTACK AGAINST ITERATIVE SERVERS
SN - 978-972-8865-63-4
AU - Maciá-Fernández G.
AU - E. Díaz-Verdejo J.
AU - García-Teodoro P.
PY - 2006
SP - 149
EP - 156
DO - 10.5220/0002103301490156