Please use this identifier to cite or link to this item:
Title: Vanguard : a new detection scheme for a class of TCP-targeted denial-of-service attacks
Authors: Luo, X
Chan, E
Chang, R 
Keywords: Internet
Computer network reliability
Telecommunication security
Transport protocols
Issue Date: 2006
Publisher: IEEE
Source: 10th IEEE/IFIP Network Operations and Management Symposium, 2006 : NOMS 2006, 3-7 April 2006, Vancouver, BC, p. 507-518 How to cite?
Abstract: A few low-rate, TCP-targeted denial-of-service (DoS) attacks have been recently proposed, including the shrew attack, reduction of quality (RoQ) attack, and pulsing DoS (PDoS) attack. All of them use periodic attack pulses to throttle TCP flows. These attacks could potentially become major threats to the Internet's stability and therefore they have motivated the development of a number of detection mechanisms for such attacks. However, those detection mechanisms are designed for specific attacks. Moreover, they assume that the period of the attack pulses is a nonzero constant. Unfortunately, these assumptions can be easily thwarted by more sophisticated attack strategies. In this paper, we propose a new detection system called Vanguard to identify a wide range of the aforementioned low-rate, DoS attacks, including the traditional flooding-based attacks as a special case. Vanguard can also detect attacks with randomized attack periods. We have validated Vanguard's efficacy based on extensive test-bed experiments. We have also compared Vanguard with other recently proposed detection systems
ISBN: 1-4244-0142-9
ISSN: 1542-1201
DOI: 10.1109/NOMS.2006.1687579
Appears in Collections:Conference Paper

View full-text via PolyU eLinks SFX Query
Show full item record

Page view(s)

Last Week
Last month
Citations as of Aug 14, 2018

Google ScholarTM



Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.