Mitigation of DOS attacks through QoS regulation Academic Article

abstract

• As more and more critical services are provided over the Internet, the risk to these services from malicious users is also increasing. Several networks have witnessed Denial of Service (DoS) attacks over the recent past. This paper reports on our experience in building a Linux-based prototype to mitigate the effect of such attacks. Our prototype provides an efficient way to keep track of server and network resources at the network layer and allows aggregate resource regulation. Our scheme provides a general, and not attack-specific, mechanism to provide graceful server degradation in the face of such an attack. We report on the rationale of our approach, the experience in building the prototype, and the results from real experiments. We show that traditional rate-based regulation combined with proposed window-based regulation of resources at the aggregate level at the network layer is a feasible vehicle for mitigating the impact of DoS attacks on end servers. 2004 Published by Elsevier B.V.

authors

• Reddy, Narasimha

published proceedings

• MICROPROCESSORS AND MICROSYSTEMS

author list (cited authors)

• Garg, A., & Reddy, A.

citation count

• 29

complete list of authors

• Garg, A||Reddy, ALN

publication date

• December 2004

publisher

• Elsevier  Publisher

published in

• Microprocessors and Microsystems  Journal

keywords

• Dos
• Linux
• Networks

Digital Object Identifier (DOI)

• 10.1016/j.micpro.2004.08.007

start page

• 521

end page

• 530

volume

• 28

issue

• 10

URL

• http://dx.doi.org/10.1016/j.micpro.2004.08.007

user-defined tag

• 11 Sustainable Cities and Communities