The Impact of Flooding Attacks on Network-based Services
- 1 March 2008
- conference paper
- conference paper
- Published by Institute of Electrical and Electronics Engineers (IEEE) in 2008 Third International Conference on Availability, Reliability and Security
- p. 509-513
- https://doi.org/10.1109/ares.2008.16
Abstract
One of the most severe threats to Internet security are Denial of Service attacks. Intended to annihilate the availability of a network-based service, this kind of attack troubles all service providers. In this paper we focus on a special type of Denial of Service attacks that relies on message flooding techniques, overloading the victim's service with invalid requests. We describe some well- known and some rather new attacks, discuss commonalities and approaches for countermeasures. A main focus of this paper is directed towards Denial of Service attacks on Web Services and Web Service Compositions. We resume these threats by illustrating some possible attacks, and we relate our experimental results to the well-known attack impact of the TCP SYN Flooding attack.Keywords
This publication has 9 references indexed in Scilit:
- SOA and Web Services: New Technologies, New Standards - New AttacksPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2007
- Protecting Web Services from DoS Attacks by SOAP Message ValidationPublished by Springer Science and Business Media LLC ,2006
- DDoS-Resilient Scheduling to Counter Application Layer Attacks Under Imperfect DetectionPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2006
- Monitoring the Macroscopic Effect of DDoS Flooding AttacksIEEE Transactions on Dependable and Secure Computing, 2005
- Web ServicesPublished by Springer Science and Business Media LLC ,2004
- A framework for classifying denial of service attacksPublished by Association for Computing Machinery (ACM) ,2003
- Detecting SYN flooding attacksPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- DOS-Resistant Authentication with Client PuzzlesLecture Notes in Computer Science, 2001
- Analysis of a denial of service attack on TCPPublished by Institute of Electrical and Electronics Engineers (IEEE) ,1997