Publication detail

Analysis and detection of application-independent slow Denial of Service cyber attacks

SIKORA, M. FUJDIAK, R. MIŠUREC, J.

Original Title

Analysis and detection of application-independent slow Denial of Service cyber attacks

Type

conference paper

Language

English

Original Abstract

This paper investigates current applicationindependent slow Denial of Service (DoS) attacks. We propose Slowcomm and Slow Next attack models and present an attack simulation tool. We used this tool for vulnerability testing of several Internet services, including Hypertext Transfer Protocol (HTTP), File Transfer Protocol (FTP), and Secure Shell (SSH) servers. We also propose attack signatures and detection methods. We implemented these methods as an Intrusion Detection System (IDS) and tested them in an experimental network. Our testing revealed vulnerabilities in five of the six tested servers that caused the denial of service to legitimate users. Deployment of the proposed attack detector has shown a high detection success. We conclude that there is a need to increase the level of cybersecurity. Internet services are vulnerable to these new DoS attacks. Our analysis can be used for the security development of tested services. Our detector in combination with a network traffic filtering tool can be used to mitigate the attacks and keep the service available to Internet users.

Keywords

slow DoS attacks, Slowcomm, Slow Next, attack generator, intrusion detection system, signatures detection

Authors

SIKORA, M.; FUJDIAK, R.; MIŠUREC, J.

Released

3. 11. 2021

Publisher

IEEE

Location

San Antonio, Texas, USA

ISBN

978-1-6654-3838-4

Book

2021 IEEE International Conference on Intelligence and Security Informatics (ISI)

Pages from

1

Pages to

6

Pages count

6

URL

BibTex

@inproceedings{BUT175107,
  author="Marek {Sikora} and Radek {Fujdiak} and Jiří {Mišurec}",
  title="Analysis and detection of application-independent slow Denial of Service cyber attacks",
  booktitle="2021 IEEE International Conference on Intelligence and Security Informatics (ISI)",
  year="2021",
  pages="1--6",
  publisher="IEEE",
  address="San Antonio, Texas, USA",
  doi="10.1109/ISI53945.2021.9624789",
  isbn="978-1-6654-3838-4",
  url="https://doi.org/10.1109/ISI53945.2021.9624789"
}