Design and analysis of an adaptive, global strategy for detecting and mitigating distributed DoS attacks in GRID environments

Taieb Znati; James Amadei; Daniel R. Pazehoski; Scott Sweeny

doi:10.1109/ANSS.2006.18

Design and analysis of an adaptive, global strategy for detecting and mitigating distributed DoS attacks in GRID environments

Taieb Znati, James Amadei, Daniel R. Pazehoski, Scott Sweeny

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

3 Citations (Scopus)

Abstract

Basic protection schemes against Denial-of-Service (DoS) are based on a perimeter-based model, where attacks are dealt with after they occur. This is quite often too late to prevent damage or loss of resources and service. The focus of this paper is to investigate a distributed defense method that can neutralize the attack before it reaches the potential target in mass. In order to effectively implement this method, this paper proposes a progressive, globally deployable sentinel scheme for data sampling, packet inspection, and DoS attack detection and recovery. A simulation framework is developed to study the performance of the proposed scheme. The results show a significant improvement in how the network deals with DoS attacks, in comparison to local DoS detection and prevention schemes.

Original language	English
Title of host publication	Proceedings - 39th Annual Simulation Symposium
Pages	2-9
Number of pages	8
DOIs	https://doi.org/10.1109/ANSS.2006.18
Publication status	Published - 2006
Externally published	Yes
Event	39th Annual Simulation Symposium, 2006 - San Diego, CA, United States Duration: Apr 2 2006 → Apr 6 2006

Publication series

Name	Proceedings - Simulation Symposium
Volume	2006
ISSN (Print)	1080-241X

Other

Other	39th Annual Simulation Symposium, 2006
Country/Territory	United States
City	San Diego, CA
Period	4/2/06 → 4/6/06

ASJC Scopus subject areas

General Engineering

Access to Document

10.1109/ANSS.2006.18

Cite this

Design and analysis of an adaptive, global strategy for detecting and mitigating distributed DoS attacks in GRID environments. / Znati, Taieb; Amadei, James; Pazehoski, Daniel R. et al.
Proceedings - 39th Annual Simulation Symposium. 2006. p. 2-9 1612838 (Proceedings - Simulation Symposium; Vol. 2006).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Znati, T, Amadei, J, Pazehoski, DR & Sweeny, S 2006, Design and analysis of an adaptive, global strategy for detecting and mitigating distributed DoS attacks in GRID environments. in Proceedings - 39th Annual Simulation Symposium., 1612838, Proceedings - Simulation Symposium, vol. 2006, pp. 2-9, 39th Annual Simulation Symposium, 2006, San Diego, CA, United States, 4/2/06. https://doi.org/10.1109/ANSS.2006.18

@inproceedings{795c386cd9924e49bc2b6d2b0da51eb5,

title = "Design and analysis of an adaptive, global strategy for detecting and mitigating distributed DoS attacks in GRID environments",

abstract = "Basic protection schemes against Denial-of-Service (DoS) are based on a perimeter-based model, where attacks are dealt with after they occur. This is quite often too late to prevent damage or loss of resources and service. The focus of this paper is to investigate a distributed defense method that can neutralize the attack before it reaches the potential target in mass. In order to effectively implement this method, this paper proposes a progressive, globally deployable sentinel scheme for data sampling, packet inspection, and DoS attack detection and recovery. A simulation framework is developed to study the performance of the proposed scheme. The results show a significant improvement in how the network deals with DoS attacks, in comparison to local DoS detection and prevention schemes.",

author = "Taieb Znati and James Amadei and Pazehoski, {Daniel R.} and Scott Sweeny",

year = "2006",

doi = "10.1109/ANSS.2006.18",

language = "English",

isbn = "0769525598",

series = "Proceedings - Simulation Symposium",

pages = "2--9",

booktitle = "Proceedings - 39th Annual Simulation Symposium",

note = "39th Annual Simulation Symposium, 2006 ; Conference date: 02-04-2006 Through 06-04-2006",

}

TY - GEN

T1 - Design and analysis of an adaptive, global strategy for detecting and mitigating distributed DoS attacks in GRID environments

AU - Znati, Taieb

AU - Amadei, James

AU - Pazehoski, Daniel R.

AU - Sweeny, Scott

PY - 2006

Y1 - 2006

N2 - Basic protection schemes against Denial-of-Service (DoS) are based on a perimeter-based model, where attacks are dealt with after they occur. This is quite often too late to prevent damage or loss of resources and service. The focus of this paper is to investigate a distributed defense method that can neutralize the attack before it reaches the potential target in mass. In order to effectively implement this method, this paper proposes a progressive, globally deployable sentinel scheme for data sampling, packet inspection, and DoS attack detection and recovery. A simulation framework is developed to study the performance of the proposed scheme. The results show a significant improvement in how the network deals with DoS attacks, in comparison to local DoS detection and prevention schemes.

AB - Basic protection schemes against Denial-of-Service (DoS) are based on a perimeter-based model, where attacks are dealt with after they occur. This is quite often too late to prevent damage or loss of resources and service. The focus of this paper is to investigate a distributed defense method that can neutralize the attack before it reaches the potential target in mass. In order to effectively implement this method, this paper proposes a progressive, globally deployable sentinel scheme for data sampling, packet inspection, and DoS attack detection and recovery. A simulation framework is developed to study the performance of the proposed scheme. The results show a significant improvement in how the network deals with DoS attacks, in comparison to local DoS detection and prevention schemes.

UR - http://www.scopus.com/inward/record.url?scp=33750128179&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33750128179&partnerID=8YFLogxK

U2 - 10.1109/ANSS.2006.18

DO - 10.1109/ANSS.2006.18

M3 - Conference contribution

AN - SCOPUS:33750128179

SN - 0769525598

SN - 9780769525594

T3 - Proceedings - Simulation Symposium

SP - 2

EP - 9

BT - Proceedings - 39th Annual Simulation Symposium

T2 - 39th Annual Simulation Symposium, 2006

Y2 - 2 April 2006 through 6 April 2006

ER -

Design and analysis of an adaptive, global strategy for detecting and mitigating distributed DoS attacks in GRID environments

Abstract

Publication series

Other

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this