Understanding DDoS attack & its effect in cloud environment

Procedia Computer Science

Volumn 49, Issue 1, 2015, Pages 202-210

  Deshmukh, Rashmi V ^a   Devadkar, Kailas K ^a  

^a SARDAR PATEL INSTITUTE OF TECHNOLOGY   (India)

Author keywords

Cloud computing; Cloud Security; DDoS

Indexed keywords

CLOUD COMPUTING; NETWORK SECURITY;

CLOUD ENVIRONMENTS; CLOUD SECURITIES; DDOS; DDOS ATTACK; DEFENSE MECHANISM;

DENIAL-OF-SERVICE ATTACK;

EID: 84938911799     PISSN: None     EISSN: 18770509     Source Type: Conference Proceeding    
DOI: 10.1016/j.procs.2015.04.245     Document Type: Conference Paper

References (30)

1. P. Mell and T. Grance, "The NIST definition of cloud computing (draft)," NIST special publication, vol. 800, no. 145, p. 7, 2011.
2. Reference-Architecture-Doc-2011-NIST-CloudComputing.pdf.
3. T. Dillon, C. Wu, and E. Chang, "Cloud Computing: Issues and Challenges," in 24th IEEE International Conference on Advanced Information Networking and Applications (AINA), 2010, pp. 2733.
4. Denial of Service Attack, http://en.wikipedia.org/wiki/Denial-of-service-attack
5. DDoS attack tool timeline, http://staff.washington.edu/dittrich/talks/sec2000/timeline.html
6. History of DDoS, http://www.timetoast.com/timelines/history-of-ddos
7. DoS and DDoS Evolution, http://users.atw.hu/denialofservice/ch03lev1sec3.html
8. CERT Coordination Center, Overview of attack trends, Feb. 2002. http://www.cert.org/archive/pdf/attack-trends.pdf.
9. B. Grobauer, T. Walloschek, and E. Stocker, "Understanding Cloud Computing Vulnerabilities," Security Privacy, IEEE, vol. 9, no. 2, pp. 5057, Mar. 2011.
10. C. Douligeris and A. Mitrokotsa, DDoS attacks and defense mechanisms: Classification and state-of-the-art, Computer Networks: the Int. J. Computer and Telecommunications Networking, Vol. 44, No. 5, April 2004, pp. 643666.
11. CERT Advisory CA-1998-01, Smurf IP Denial-of-Service Attacks, January 5, 1998, Available: http://www.cert.org/advisories/CA-1998-01.html
12. Meiko Jensen, Jorg Schwenk, Nil Gruschka "On technical issues in cloud computing", IEEE International Conference on cloud computing, 2009.
13. The Notorious Nine, Cloud Computing Top Threats in 2013, https://downloads.cloudsecurityalliance.org/initiatives/topthreats/The Notorious Nine Cloud Computing Top Threatsin 2013.pdf
14. N. Weiler, Honeypots for Distributed Denial of Service, in Proceedings ofthe Eleventh IEEE International Workshops Enabling Technologies: Infrastructure for Collaborative Enterprises 2002, Pitsburgh, PA, USA, June 2002, pp. 109114.
15. P. Ferguson, D. Senie, Network ingress filtering: defeating Denial of Service attacks which employ IP source address spoofing, in: RFC 2827, 2001.
16. Global Incident analysis Center Special Notice Egress filtering, Available from http://www.sans.org/y2k/egress.htm.
17. K. Park, H. Lee, On the effectiveness of route-based packet filtering for Distributed DoS attack prevention in power law Internets, in: Proceedings of the ACM SIGCOMM 01 Conference on Applications, Technologies, Architectures, and Protocols for Computer Communications, ACM Press, New York, 2001, pp. 1526.
18. A. Keromytis, V. Misra, D. Rubenstein, SoS: secure overlay services, in: Proceedings of the ACM SIGCOMM 02 Conference on Applications, Technologies, Architectures, and Protocols for Computer Communications, ACM Press, New York, 2002, pp. 6172
19. C. Zou, D. Towsley, and W. Gong, the performance of internet worm scanning strategies, 2003.
20. V. Paxson S. Staniford and N. Weaver, How to own the internet in your spare time, in 11th Usenix Security Symposium, San Francisco, August 2002.
21. V. Paxson S. Staniford and N. Weaver, How to own the internet in your spare time, in 11th Usenix Security Symposium, San Francisco, August 2002.
22. C. Zou, D. Towsley, W. Gong, and S. Cai, Routing worm: A fast, selective attack worm based on ip address information, 2005. Common Vulnerabilities and Exposures, http://cve.mitre.org/cve/
23. J. Mirkovic, G. Prier, P. Reiher, Attacking DDoS at the source, in: Proceedings of ICNP 2002, Paris, France, 2002, pp. 312321
24. R.R. Talpade, G. Kim, S. Khurana, NOMAD: Traffic based network monitoring framework for anomaly detection, in: Proceedings of the Fourth IEEE Symposium on Computers and Communications, 1998.
25. Y. Huang, J.M. Pullen, Countering Denial of Service attacks using congestion triggered packet sampling and filtering, in: Proceedings of the 10th International Conference on Computer Communiations and Networks, 2001.
26. T.M. Gil, M. Poleto, MULTOPS: a data-structure for bandwidth attack detection, in: Proceedings of 10th Usenix Security Symposium, Washington, DC, August 1317, 2001, pp. 2338.
27. S. Savage, D. Wetherall, A. Karlin, T. Anderson, Network support for IP traceback, IEEE/ACM Transaction on Networking 9 (3) (2001) 226237.
28. H. Burch, H. Cheswick, Tracing anonymous packets to their approximate source, in:Proceedings of USENIX LISA (New Orleans) Conference, 2000, pp. 319327
29. S. Bellovin, The ICMP traceback message, Network Working Group, Internet Draft, March 2000, Available S. Bellovin, The ICMP traceback message, Network from ¡http://lasr.cs.ucla.edu/save/rfc/draft-bellovin-itrace-00.txt¿
30. Rashmi D. and Kailas D. mitigating ddos attack in cloud environment with packet filtering using iptables in International Journal of Computer Engineering and Applications, Volume VII, Issue II, August 14.