Sciweavers

WDAG
2005
Springer

Keeping Denial-of-Service Attackers in the Dark

14 years 5 months ago
Keeping Denial-of-Service Attackers in the Dark
Abstract. We consider the problem of overcoming (Distributed) Denial of Service (DoS) attacks by realistic adversaries that can eavesdrop on messages, or parts thereof, but with some delay. We show a protocol that mitigates DoS attacks by eavesdropping adversaries, using only available, efficient packet filtering mechanisms based mainly on (addresses and) port numbers. Our protocol avoids the use of fixed ports, and instead performs ‘pseudo-random port hopping’. We model the underlying packet-filtering services and define measures for the capabilities of the adversary and for the success rate of the protocol. Using these, we analyze the proposed protocol, and show that it provides effective DoS prevention for realistic attack and deployment scenarios.
Gal Badishi, Amir Herzberg, Idit Keidar
Added 28 Jun 2010
Updated 28 Jun 2010
Type Conference
Year 2005
Where WDAG
Authors Gal Badishi, Amir Herzberg, Idit Keidar
Comments (0)