Title :
Design and analysis of an adaptive, global strategy for detecting and mitigating distributed DoS attacks in grid environments
Author :
Znati, Taieb ; Amadei, James ; Pazehoski, Daniel R. ; Sweeny, Scott
Author_Institution :
Dept. of Comput. Sci., Pittsburgh Univ., PA, USA
Abstract :
Basic protection schemes against denial-of-service (DoS) are based on a perimeter-based model, where attacks are dealt with after they occur. This is quite often too late to prevent damage or loss of resources and service. The focus of this paper is to investigate a distributed defense method that can neutralize the attack before it reaches the potential target in mass. In order to effectively implement this method, this paper proposes a progressive, globally deploy able sentinel scheme for data sampling, packet inspection, and DoS attack detection and recovery. A simulation framework is developed to study the performance of the proposed scheme. The results show a significant improvement in how the network deals with DoS attacks, in comparison to local DoS detection and prevention schemes.
Keywords :
grid computing; security of data; system recovery; DoS attack detection; DoS attack recovery; basic protection scheme; data sampling; denial-of-service; distributed DoS attack; distributed defense method; grid environment; packet inspection; perimeter-based model; Collaboration; Computer crime; Computer science; Computer worms; Grid computing; Inspection; Internet; Intrusion detection; Protection; Sampling methods;
Conference_Titel :
Simulation Symposium, 2006. 39th Annual
Print_ISBN :
0-7695-2559-8
DOI :
10.1109/ANSS.2006.18
