A comparative study on flood DoS and low-rate DoS attacks |
| |
Authors: | Xiao-ming LIU Gong CHENG Qi LI Miao ZHANG |
| |
Affiliation: | 1. Information Security Center, Beijing University of Posts and Telecommunications, Beijing 100876, China;2. National Computer Network Emergency Response Technical Team/Coordination Center of China, Beijing 100029, China;3. National Engineering Laboratory for Disaster Backup and Recovery, Beijing University of Posts and Telecommunications, Beijing 100876, China |
| |
Abstract: | Denial of service (DoS) attacks is a serious threat for the Internet. DoS attacks can consume memory, Computer processing unit (CPU), and network bandwidths and damage or shut down the operation of the resource under attack. In this paper, based on the taxonomy of DoS attacks, two typical types of DoS—flood DoS (FDoS) and low-rate DoS (LDoS) attacks, are studied on their generation principle, mechanism utilization, signature, impacts, and defense mechanisms. Simulation results illustrate that 1) FDoS is easy to be launched but its signature is easy to be detected. 2) LDoS organizes an average small quantity of traffic and it is stealthier. Comparison of LDoS with FDoS shed light on the emerging new features of DoS attacks and can make the detection and defense mechanisms more efficient. |
| |
Keywords: | |
本文献已被 ScienceDirect 等数据库收录! |
|