Distributed Denial of Service: Taxonomies of Attacks, Tools and Countermeasures

17th ISCA International Conference on Parallel and Distributed Computing Systems 2004, PDCS 2004

Volumn , Issue , 2004, Pages 543-550

  Specht, Stephen M ^a   Lee, Ruby B ^a  

^a Princeton University   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

DISTRIBUTED COMPUTER SYSTEMS; NETWORK SECURITY; TAXONOMIES;

ATTACK MODELING; DENIALOF- SERVICE ATTACKS; DISTRIBUTED DENIAL OF SERVICE; GENERALIZED SOLUTION; LARGE PROBLEMS; LARGE-SCALE ATTACKS; SERVICE TOOLS; SOFTWARE ATTACKS;

DENIAL-OF-SERVICE ATTACK;

EID: 85132972574     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (25)

1. David Karig and Ruby Lee, "Remote Denial of Service Attacks and Countermeasures, " Princeton University Department of Electrical Engineering Technical Report CE-L2001-002, Oct. 2001.
2. "Yahoo on Trail of Site Hackers", Wired.com, Feb. 8, 2000. http://www.wired.eom/news/business/0, 1367, 34221, 00.html (15 May 2003).
3. Brunker, Mike. "Spam Block Lists Bombed to Oblivion". MSNBC. COM 24 Sept 2003. http://www.msnbc.msn. com/id/3088113/(Jul. 5, 2004).
4. Kevin J. Houle. "Trends in Denial of Service Attack Technology". CERT Coordination Center, Carnegie Mellon Software Engineering Institute. Oct. 2001. www.nanog.org/mtg-0110/ppt/houle.ppt. (14 Mar. 2003).
5. Paul J. Criscuolo. "Distributed Denial of Service TrinOO, Tribe Flood Network, Tribe Flood Network 2000, And StacheldrahtCIAC-2319". Department of Energy Computer Incident Advisory Capability (CIAC), UCRL-ID-136939, Rev. 1., Lawrence Livermore National Laboratory, Feb. 14, 2000.
6. TFreak. "smurf.c", www.phreak.org. Oct. 1997. www.phreak.org/archives/exploits/denial/srnurf.c (6 May 2003).
7. Federal Computer Incident Response Center (FedCIRC), "Defense Tactics for Distributed Denial of Service Attacks". Washington, DC, 2000.
8. TFreak. "fraggle.c", www.phreak.org, www.phreak.org/archives/exploits/denial/fraggle.c (6 May 2003).
9. Martin, Michael J., "Router Expert: Smurf/Fraggle Attack Defense Using SACLS", Networking Tips and Newsletters, www.searchnetwork.techtarget.com. Oct. 2002. http://searchnetworking.techtarget.com/tip/l, 289483, sid7_gci85 6112, 00.html (6 May 2003).
10. "Nmap Stealth Port Scanner Introduction", Insecure.org. August 2002. http://www.insecure.org/nmap/. (8 Apr. 2003).
11. "CVE (version 20020625) ", Common Vulnerabilities and Exposures. Mar. 27, 2002. http://cve.mitre.org/cve/. (9 Apr. 2003).
12. Colon E. Pelaez and John Bowles, "Computer Viruses", System Theory, 1991, Twenty-Third Southeastern Symposium,. pp. 513-517, Mar. 1999.
13. Crispin Cowan, Perry Wagle, Calton Pu, Steve Beattie, and Jonathan Walpole, "Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade", DARPA Information Survivability Conference and Exposition, 2000. Vol. 2, pp. 119-129, 2000.
14. Microsoft. "How to Write Active X Controls for Microsoft Windows CE2.1", Microsoft Corporation. Jun. 1999. http://msdn. microsoft.com/library/default.asp7urWlibrary/en-us/dnce21/html/activexce.asp. (5 Apr. 2003).
15. Dancho Danchev. "The Complete Windows Trojans Paper", BCVG Network Security. Oct. 22, 2002. http://www.ebcvg.com/articles.php?id=91. (9 Apr. 2003).
16. David Dittrich. "The DoS Project's "trinoo" Distributed Denial of Service Attack Tool". University of Washington, Oct. 21, 1999. http://staff.washington. edu/dittrich/misc/trinoo.analvsis.txt (8 Apr. 2003).
17. ™Online. Part No.: 816-4816-10, Revision 1.0. May 2002. http://www.sun. com/solutions/blueprints/0502/816-4816-10.pdf. (8 Apr. 2003).
18. Ruby Lee, David Karig, Patrick McGregor and Zhijie Shi, "Enlisting Hardware Architecture to Thwart Malicious Code Injection", Proceedings of the International Conference on Security in Pervasive Computing (SPC-2003), LNCS 2802, pp. 237-252, Springer Verlag, March 2003.
19. David Mankins, Rajesh Krishnan, Ceilyn Boyd, John Zao, and Michael Frentz, "Mitigating Distributed Denial of Service Attacks with Dynamic Resource Pricing", Computer Security Applications Conference, 2001. ACSAC 2001. Proceedings 17lh Annual, pp. 411-421, 2001.
20. Joao B. D. Cabrera, Lundy Lewis, Xinzhou Qin, Wenke Lee, Ravi K. Prasanth, B. Ravichandran, and Ramon K. Mehra, "Proactive Detection of Distributed Denial of Service Attacks Using MIB Traffic Variables - A Feasibility Study", Integrated Network Management Proceedings, pp. 609-622, 2001.
21. David K. Yau, John C. S. Lui, and Feng Liang, "Defending Against Distributed Denial of Service Attacks with Max-min Fair Server-centric Router Throttles", Quality of Service, 2002 Tenth IEEE International Workshop, pp. 35-44, 2002.
22. Nathalie Weiler. "Honeypots for Distributed Denial of Service", Enabling Technologies: Infrastructure for Collaborative Enterprises, 2002. WET ICE 2002. Proceedings. Eleventh IEEE International Workshops, 2002. pp. 109-114.
23. Vern Paxon, "An Analysis of Using Reflectors for Distributed Denial of Service Attacks", ACMSIGCOMM Computer Communication Review, Vol. 31, Iss. 3, Jul. 2001.
24. Thomas E. Daniels and Eugene H. Spafford, "Network Traffic Tracking Systems: Folly in the Large?", Proceedings of the 2000 Workshop on New Security Paradigms, Feb. 2001.
25. Stephen Specht and Ruby Lee, "Distributed Denial.of Service: Taxonomies of Networks, Attacks, Tools, and Countermeasures, " Princeton University Department of Electrical Engineering Technical Report CE-L2003-03, May 2003