Detail publikace

On Detection and Mitigation of Slow Rate Denial of Service Attacks

Originální název

On Detection and Mitigation of Slow Rate Denial of Service Attacks

Anglický název

On Detection and Mitigation of Slow Rate Denial of Service Attacks

Jazyk

en

Originální abstrakt

This work investigates the detection and mitigation methods that aim at Slow Denial of Service attacks. The paper focuses mainly on Slowloris and Slow Read DoS attacks which are resistant to classical DoS detection and mitigation techniques. The proposed approach consists of the detection phase and mitigation phase. Detection methods are based on network traffic analysis and anomalous traffic monitoring. Furthermore, if an attack is recognized then classified malicious traffic is blocked and web server resources are released. The proposed methods are implemented and consolidated into an intrusion prevention system software. The implemented system is tested and obtained results prove its functionality.

Anglický abstrakt

This work investigates the detection and mitigation methods that aim at Slow Denial of Service attacks. The paper focuses mainly on Slowloris and Slow Read DoS attacks which are resistant to classical DoS detection and mitigation techniques. The proposed approach consists of the detection phase and mitigation phase. Detection methods are based on network traffic analysis and anomalous traffic monitoring. Furthermore, if an attack is recognized then classified malicious traffic is blocked and web server resources are released. The proposed methods are implemented and consolidated into an intrusion prevention system software. The implemented system is tested and obtained results prove its functionality.

BibTex


@inproceedings{BUT159620,
  author="Marek {Sikora} and Tomáš {Gerlich} and Lukáš {Malina}",
  title="On Detection and Mitigation of Slow Rate Denial of Service Attacks",
  annote="This work investigates the detection and mitigation methods that aim at Slow Denial of Service attacks. The paper focuses mainly on Slowloris and Slow Read DoS attacks which are resistant to classical DoS detection and mitigation techniques. The proposed approach consists of the detection phase and mitigation phase. Detection methods are based on network traffic analysis and anomalous traffic monitoring. Furthermore, if an attack is recognized then classified malicious traffic is blocked and web server resources are released. The proposed methods are implemented and consolidated into an intrusion prevention system software. The implemented system is tested and obtained results prove its functionality.",
  address="IEEE",
  booktitle="2019 11th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT)",
  chapter="159620",
  howpublished="electronic, physical medium",
  institution="IEEE",
  year="2019",
  month="october",
  pages="1--5",
  publisher="IEEE",
  type="conference paper"
}