A simulation study of the proactive server roaming for mitigating denial of service attacks

C. Sanetachatanaruk; S. M. Khattab; T. Znati; R. Melhem; D. Mossé

doi:10.1109/SIMSYM.2003.1192793

A simulation study of the proactive server roaming for mitigating denial of service attacks

C. Sanetachatanaruk, S. M. Khattab, T. Znati, R. Melhem, D. Mossé

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

6 Citations (Scopus)

Abstract

The main goal of the NETSEC project is to design and implement a framework for mitigating the effects of the node-based and link-based denial of service (DoS) attacks. Our strategy employs three lines of defense. The first line of defense is to restrict the access to the defended services using offline service subscription, encryption and other traditional security techniques. The second line of defense is server roaming, by which we mean the migration of the service from one server to another, where the new server has a different IP address. Finally, each server and firewall(s) implement resource management schemes as a third line of defense. For example, deploying separate input queues to allocate different classes of service requests. We show our simulation study on the second line of defense, the server roaming. The design and procedure of the sever roaming on the NS2 is described. The promising results of applying the server roaming to mitigate the DoS attack in the simulation are also shown with analysis.

Original language	English
Title of host publication	Proceedings - 36th Annual Simulation Symposium, ANSS 2003
Publisher	IEEE Computer Society
Pages	7-14
Number of pages	8
ISBN (Electronic)	0769519113
DOIs	https://doi.org/10.1109/SIMSYM.2003.1192793
Publication status	Published - 2003
Externally published	Yes
Event	36th Annual Simulation Symposium, ANSS 2003 - Orlando, United States Duration: Mar 30 2003 → Apr 2 2003

Publication series

Name	Proceedings - Simulation Symposium
Volume	2003-January
ISSN (Print)	1080-241X

Conference

Conference	36th Annual Simulation Symposium, ANSS 2003
Country/Territory	United States
City	Orlando
Period	3/30/03 → 4/2/03

Keywords

Authentication
Bandwidth
Computational modeling
Computer crime
Cryptography
File servers
Internet
Network servers
Operating systems
Web server

ASJC Scopus subject areas

Engineering(all)

Access to Document

10.1109/SIMSYM.2003.1192793

Cite this

Sanetachatanaruk, C., Khattab, S. M., Znati, T., Melhem, R., & Mossé, D. (2003). A simulation study of the proactive server roaming for mitigating denial of service attacks. In Proceedings - 36th Annual Simulation Symposium, ANSS 2003 (pp. 7-14). Article 1192793 (Proceedings - Simulation Symposium; Vol. 2003-January). IEEE Computer Society. https://doi.org/10.1109/SIMSYM.2003.1192793

A simulation study of the proactive server roaming for mitigating denial of service attacks. / Sanetachatanaruk, C.; Khattab, S. M.; Znati, T. et al.
Proceedings - 36th Annual Simulation Symposium, ANSS 2003. IEEE Computer Society, 2003. p. 7-14 1192793 (Proceedings - Simulation Symposium; Vol. 2003-January).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Sanetachatanaruk, C, Khattab, SM, Znati, T, Melhem, R & Mossé, D 2003, A simulation study of the proactive server roaming for mitigating denial of service attacks. in Proceedings - 36th Annual Simulation Symposium, ANSS 2003., 1192793, Proceedings - Simulation Symposium, vol. 2003-January, IEEE Computer Society, pp. 7-14, 36th Annual Simulation Symposium, ANSS 2003, Orlando, United States, 3/30/03. https://doi.org/10.1109/SIMSYM.2003.1192793

@inproceedings{d71ba500b32b4bd2b4c4cd4be7e29900,

title = "A simulation study of the proactive server roaming for mitigating denial of service attacks",

abstract = "The main goal of the NETSEC project is to design and implement a framework for mitigating the effects of the node-based and link-based denial of service (DoS) attacks. Our strategy employs three lines of defense. The first line of defense is to restrict the access to the defended services using offline service subscription, encryption and other traditional security techniques. The second line of defense is server roaming, by which we mean the migration of the service from one server to another, where the new server has a different IP address. Finally, each server and firewall(s) implement resource management schemes as a third line of defense. For example, deploying separate input queues to allocate different classes of service requests. We show our simulation study on the second line of defense, the server roaming. The design and procedure of the sever roaming on the NS2 is described. The promising results of applying the server roaming to mitigate the DoS attack in the simulation are also shown with analysis.",

keywords = "Authentication, Bandwidth, Computational modeling, Computer crime, Cryptography, File servers, Internet, Network servers, Operating systems, Web server",

author = "C. Sanetachatanaruk and Khattab, {S. M.} and T. Znati and R. Melhem and D. Moss{\'e}",

note = "Publisher Copyright: {\textcopyright} 2003 IEEE.; 36th Annual Simulation Symposium, ANSS 2003 ; Conference date: 30-03-2003 Through 02-04-2003",

year = "2003",

doi = "10.1109/SIMSYM.2003.1192793",

language = "English",

series = "Proceedings - Simulation Symposium",

publisher = "IEEE Computer Society",

pages = "7--14",

booktitle = "Proceedings - 36th Annual Simulation Symposium, ANSS 2003",

}

TY - GEN

T1 - A simulation study of the proactive server roaming for mitigating denial of service attacks

AU - Sanetachatanaruk, C.

AU - Khattab, S. M.

AU - Znati, T.

AU - Melhem, R.

AU - Mossé, D.

PY - 2003

Y1 - 2003

N2 - The main goal of the NETSEC project is to design and implement a framework for mitigating the effects of the node-based and link-based denial of service (DoS) attacks. Our strategy employs three lines of defense. The first line of defense is to restrict the access to the defended services using offline service subscription, encryption and other traditional security techniques. The second line of defense is server roaming, by which we mean the migration of the service from one server to another, where the new server has a different IP address. Finally, each server and firewall(s) implement resource management schemes as a third line of defense. For example, deploying separate input queues to allocate different classes of service requests. We show our simulation study on the second line of defense, the server roaming. The design and procedure of the sever roaming on the NS2 is described. The promising results of applying the server roaming to mitigate the DoS attack in the simulation are also shown with analysis.

AB - The main goal of the NETSEC project is to design and implement a framework for mitigating the effects of the node-based and link-based denial of service (DoS) attacks. Our strategy employs three lines of defense. The first line of defense is to restrict the access to the defended services using offline service subscription, encryption and other traditional security techniques. The second line of defense is server roaming, by which we mean the migration of the service from one server to another, where the new server has a different IP address. Finally, each server and firewall(s) implement resource management schemes as a third line of defense. For example, deploying separate input queues to allocate different classes of service requests. We show our simulation study on the second line of defense, the server roaming. The design and procedure of the sever roaming on the NS2 is described. The promising results of applying the server roaming to mitigate the DoS attack in the simulation are also shown with analysis.

KW - Authentication

KW - Bandwidth

KW - Computational modeling

KW - Computer crime

KW - Cryptography

KW - File servers

KW - Internet

KW - Network servers

KW - Operating systems

KW - Web server

UR - http://www.scopus.com/inward/record.url?scp=3042850692&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=3042850692&partnerID=8YFLogxK

U2 - 10.1109/SIMSYM.2003.1192793

DO - 10.1109/SIMSYM.2003.1192793

M3 - Conference contribution

AN - SCOPUS:3042850692

T3 - Proceedings - Simulation Symposium

SP - 7

EP - 14

BT - Proceedings - 36th Annual Simulation Symposium, ANSS 2003

PB - IEEE Computer Society

T2 - 36th Annual Simulation Symposium, ANSS 2003

Y2 - 30 March 2003 through 2 April 2003

ER -

A simulation study of the proactive server roaming for mitigating denial of service attacks

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this