LoRDAS: A Low-Rate DoS Attack against Application Servers
-
Gabriel Maciá-Fernández; Jesús Esteban Díaz Verdejo; Pedro García-Teodoro; Francisco de Toro Negro
- Abstract:
- In a communication network, there always exist some specific
servers that should be considered a critical infrastructure to be protected,
specially due to the nature of the services that they provide. In this
paper, a low-rate denial of service attack against application servers is
presented. The attack gets advantage of known timing mechanisms in the
server behaviour to wisely strike ON/OFF attack waveforms that cause
denial of service, while the traffic rate sent to the server is controlled,
thus allowing to bypass defense mechanisms that rely on the detection of
high rate traffics. First, we determine the conditions that a server should
present to be considered a potential victim of this attack. As an example,
the persistent HTTP server case is presented, being the procedure for
striking the attack against it described. Moreover, the efficiency achieved
by the attack is evaluated in both simulated and real environments, and
its behaviour studied according to the variations on the configuration
parameters. The aim of this work1 is to denounce the feasibility of such
attacks in order to motivate the development of defense mechanisms.
- Research areas:
- Year:
- 2008
- Type of Publication:
- Article
- Journal:
- Lect. Notes in Computer Science
- Volume:
- 5141
- Pages:
- 197-209
- ISSN:
- 0302-9743
Hits: 2264