T. Znati, James Amadei, Daniel R. Pazehoski, Scott Sweeny
{"title":"网格环境中分布式DoS攻击的自适应全局检测策略设计与分析","authors":"T. Znati, James Amadei, Daniel R. Pazehoski, Scott Sweeny","doi":"10.1109/ANSS.2006.18","DOIUrl":null,"url":null,"abstract":"Basic protection schemes against denial-of-service (DoS) are based on a perimeter-based model, where attacks are dealt with after they occur. This is quite often too late to prevent damage or loss of resources and service. The focus of this paper is to investigate a distributed defense method that can neutralize the attack before it reaches the potential target in mass. In order to effectively implement this method, this paper proposes a progressive, globally deploy able sentinel scheme for data sampling, packet inspection, and DoS attack detection and recovery. A simulation framework is developed to study the performance of the proposed scheme. The results show a significant improvement in how the network deals with DoS attacks, in comparison to local DoS detection and prevention schemes.","PeriodicalId":308739,"journal":{"name":"39th Annual Simulation Symposium (ANSS'06)","volume":"39 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2006-04-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"Design and analysis of an adaptive, global strategy for detecting and mitigating distributed DoS attacks in grid environments\",\"authors\":\"T. Znati, James Amadei, Daniel R. Pazehoski, Scott Sweeny\",\"doi\":\"10.1109/ANSS.2006.18\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Basic protection schemes against denial-of-service (DoS) are based on a perimeter-based model, where attacks are dealt with after they occur. This is quite often too late to prevent damage or loss of resources and service. The focus of this paper is to investigate a distributed defense method that can neutralize the attack before it reaches the potential target in mass. In order to effectively implement this method, this paper proposes a progressive, globally deploy able sentinel scheme for data sampling, packet inspection, and DoS attack detection and recovery. A simulation framework is developed to study the performance of the proposed scheme. The results show a significant improvement in how the network deals with DoS attacks, in comparison to local DoS detection and prevention schemes.\",\"PeriodicalId\":308739,\"journal\":{\"name\":\"39th Annual Simulation Symposium (ANSS'06)\",\"volume\":\"39 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2006-04-02\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"39th Annual Simulation Symposium (ANSS'06)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ANSS.2006.18\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"39th Annual Simulation Symposium (ANSS'06)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ANSS.2006.18","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Design and analysis of an adaptive, global strategy for detecting and mitigating distributed DoS attacks in grid environments
Basic protection schemes against denial-of-service (DoS) are based on a perimeter-based model, where attacks are dealt with after they occur. This is quite often too late to prevent damage or loss of resources and service. The focus of this paper is to investigate a distributed defense method that can neutralize the attack before it reaches the potential target in mass. In order to effectively implement this method, this paper proposes a progressive, globally deploy able sentinel scheme for data sampling, packet inspection, and DoS attack detection and recovery. A simulation framework is developed to study the performance of the proposed scheme. The results show a significant improvement in how the network deals with DoS attacks, in comparison to local DoS detection and prevention schemes.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
