Title :
Protecting Web servers from octopus attacks
Author :
Kobayashi, Yoshinori ; Chen, Eric Y. ; Oyama, Yoshihiro ; Yonezawa, Akinori
Author_Institution :
Tokyo Univ.
Abstract :
Denial-of-service (DoS) attacks are a major threat to the Internet and have not been completely solved in spite of much research effort. This paper deals with an important class of DoS attacks, called octopus attacks, which establish a flood of connections to a victim Web server and prevent legitimate users from connecting to the server. Octopus attacks cause serious performance degradation of the targeted server. In this paper, we propose an approach for protecting Web servers against octopus attacks. Our approach deploys an active monitor that monitors the network traffic arriving at a protected server. When there are an excessive number of connections to the server, this monitor resets the connection that is most likely to be an attacker´s. We implemented this monitor on a Linux platform. Through experiments, we confirmed that our monitor enabled a Web server to provide service to legitimate users even when octopus attacks were made against the server
Keywords :
Internet; monitoring; telecommunication security; telecommunication traffic; Internet; Linux platform; Web server; denial-of-service attacks; network traffic; octopus attacks; Computer crime; Degradation; Floods; Internet; Joining processes; Monitoring; Network servers; Protection; Telecommunication traffic; Web server;
Conference_Titel :
Applications and the Internet, 2006. SAINT 2006. International Symposium on
Conference_Location :
Phoenix, AZ
Print_ISBN :
0-7695-2508-3
DOI :
10.1109/SAINT.2006.52
