Title :
Exposing and eliminating vulnerabilities to denial of service attacks in secure gossip-based multicast
Author :
Badishi, Gal ; Keidar, Idit ; Sasson, Amir
Author_Institution :
Dept. of Electr. Eng., Technion-Israel Inst. of Technol., Haifa, Israel
Abstract :
We propose a framework and methodology for quantifying the effect of denial of service (DoS) attacks on a distributed system. We present a systematic study of the resistance of gossip-based multicast protocols to DoS attacks. We show that even distributed and randomized gossip-based protocols, which eliminate single points of failure, do not necessarily eliminate vulnerabilities to DoS attacks. We propose Drum - a simple gossip-based multicast protocol that eliminates such vulnerabilities. Drum was implemented in Java and tested on a large cluster. We show, using closed-form mathematical analysis, simulations, and empirical tests, that Drum survives severe DoS attacks.
Keywords :
Java; distributed processing; multicast protocols; telecommunication security; DoS attack; Java; denial of service attack; distributed system; gossip-based multicast protocol; Analytical models; Computer crime; Degradation; Immune system; Java; Mathematical analysis; Multicast protocols; Protection; Telecommunication traffic; Testing; Distributed applications; and serviceability; availability; distributed programming.; reliability;
Journal_Title :
Dependable and Secure Computing, IEEE Transactions on
DOI :
10.1109/TDSC.2006.12
