Research on Counter Http DDoS Attacks based on Weighted Queue Random Early Drop

Guo Rui, Chang Guiran, Hou Ruidong, Baojing Sun, Liu An, Bencheng Zhang

2007

Abstract

This paper proposes a new approach, called Weighted Queue Random Early Drop admission control, which protects small and medium online business Web sites against HTTP DDoS attacks. Weighted Queue Random Early Drop is used to compute dropping probability to avoid bursty traffic. Weighted Queue scheduler is adopted to implement access rate limit. The feasibility and effectiveness of our approach is validated by measuring the performance of an experimental prototype against a series of attacks. The advantages of the scheme are discussed and further research directions are given.

References

  1. Jelena Mirkovic, Sven Dietrich, Internet Denial of Service: Attack and Mechanisms, Prentice Hall PTR, December 30, 2004,1-400
  2. Siris VA, Application of anomaly detection algorithms for detecting SYN flooding attacks In: Regency H, ed. Global Telecommunications Conf. (GLOBECOM 2004). Dallas: IEEE, 2004. 2050-2054.
  3. Li W, Wu LF, Hu GY. Design and implementation of distributed intrusion detection system NetNumen. Journal of Software, 2002,13(8):1723-1728
  4. Sung M, Xu J. IP traceback-based intelligent packet filtering: A novel technique for defending against Internet DDoS attacks. IEEE Trans. on Parallel and Distributed Systems, 2003, 14(9):861-872.
  5. A. Chandra and P. Shenoy. Effectiveness of dynamic resource allocation for handling Internet, University of Massachussets, TR03-37, 2003.
  6. Liang F, Yau D. Using adaptive router throttles against distributed denial-of-service attacks. Journal of Software, 2002,13(7): 1120-1127
  7. Morein, W.G., Stavrou, A., Cook, D.L., Keromytis, A.D., Misra, V., Rubenstein, D.: Using Graphic Turing Tests to Counter Automated DDoS Attacks Against Web Servers. In: Proceedings of the 10th ACM International Conference on Computer and Communications Security (CCS). (2003) 8-19.
  8. S. Kandula, D. Katabi, M. Jacob, and A. Berger. Botz-4-sale:Surviving organized DDoS attacks that mimic flash crowds. In USENIX NSDI, May 2005.
  9. Thomas R, Mark B, Johnson T, Croall J. NetBouncer: Client-Legitimacy-Based high-performance DDoS filtering. In: Wermer B, ed. DARPA Information Survivability Conf. and Exposition 2003. Washington: Institute of Electrical and Electronics Engineers, Inc., 2003. 14-25.
  10. 10 Yu Chen, Kai Hwang, Yu-Kwong Kwok, "Filtering of Shrew DDoS Attacks in Frequency Domain," lcn, pp. 786-793, The IEEE Conference on Local Computer Networks 30th Anniversary (LCN'05)l, 2005
Download


Paper Citation


in Harvard Style

Rui G., Guiran C., Ruidong H., Sun B., An L. and Zhang B. (2007). Research on Counter Http DDoS Attacks based on Weighted Queue Random Early Drop . In Proceedings of the 5th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2007) ISBN 978-972-8865-96-2, pages 73-81. DOI: 10.5220/0002355000730081


in Bibtex Style

@conference{wosis07,
author={Guo Rui and Chang Guiran and Hou Ruidong and Baojing Sun and Liu An and Bencheng Zhang},
title={Research on Counter Http DDoS Attacks based on Weighted Queue Random Early Drop},
booktitle={Proceedings of the 5th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2007)},
year={2007},
pages={73-81},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002355000730081},
isbn={978-972-8865-96-2},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 5th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2007)
TI - Research on Counter Http DDoS Attacks based on Weighted Queue Random Early Drop
SN - 978-972-8865-96-2
AU - Rui G.
AU - Guiran C.
AU - Ruidong H.
AU - Sun B.
AU - An L.
AU - Zhang B.
PY - 2007
SP - 73
EP - 81
DO - 10.5220/0002355000730081