Amplification DDoS Attacks: Emerging Threats and Defense Strategies

Abstract : There are too many servers on the Internet that have already been used, or that are vulnerable and can potentially be used to launch DDoS attacks. Even though awareness increases and organizations begin to lock down those systems, there are plenty of other protocols that can be exploited to be used instead of them. One example is the Simple Network Management Protocol (SNMP), which is a common UDP protocol used for network management. Several types of network devices actually come with SNMP ”on” by default. A request sent to an SNMP server returns a response that is larger than the query that came in.The main aim of this paper is to investigate on the increasing prevalence and destructive power of amplification-based distributed denial of service (DDoS) attacks in order to present a solution based on a profiling methodology. The paper encompass three aspects: amplification DDoS attacks and main port used, the profiling methodology as a mean of identifying the threat and shape it. Finally, a proposal solution is given by considering both strategic and technical aspects.
Complete list of metadatas

Cited literature [17 references]  Display  Hide  Download

https://hal.inria.fr/hal-01404010
Contributor : Hal Ifip <>
Submitted on : Monday, November 28, 2016 - 11:29:08 AM
Last modification on : Tuesday, November 29, 2016 - 1:04:50 AM
Long-term archiving on : Tuesday, March 21, 2017 - 4:06:01 AM

File

978-3-319-10975-6_24_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Antonio Colella, Clara Colombini. Amplification DDoS Attacks: Emerging Threats and Defense Strategies. International Cross-Domain Conference and Workshop on Availability, Reliability, and Security (CD-ARES), Sep 2014, Fribourg, Switzerland. pp.298-310, ⟨10.1007/978-3-319-10975-6_24⟩. ⟨hal-01404010⟩

Share

Metrics

Record views

108

Files downloads

410