A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service Attacks
The growth of web technology has brought convenience to our life, since it has become the most important communication channel. However, now this merit is threatened by complicated network-based attacks, such as denial of service (DoS) and distributed denial of service (DDoS) attacks. Despite many r...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Wiley
2015-01-01
|
| Series: | The Scientific World Journal |
| Online Access: | http://dx.doi.org/10.1155/2015/238230 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832556983183474688 |
|---|---|
| author | Mohammed A. Saleh Azizah Abdul Manaf |
| author_facet | Mohammed A. Saleh Azizah Abdul Manaf |
| author_sort | Mohammed A. Saleh |
| collection | DOAJ |
| description | The growth of web technology has brought convenience to our life, since it has become the most important communication channel. However, now this merit is threatened by complicated network-based attacks, such as denial of service (DoS) and distributed denial of service (DDoS) attacks. Despite many researchers’ efforts, no optimal solution that addresses all sorts of HTTP DoS/DDoS attacks is on offer. Therefore, this research aims to fix this gap by designing an alternative solution called a flexible, collaborative, multilayer, DDoS prevention framework (FCMDPF). The innovative design of the FCMDPF framework handles all aspects of HTTP-based DoS/DDoS attacks through the following three subsequent framework’s schemes (layers). Firstly, an outer blocking (OB) scheme blocks attacking IP source if it is listed on the black list table. Secondly, the service traceback oriented architecture (STBOA) scheme is to validate whether the incoming request is launched by a human or by an automated tool. Then, it traces back the true attacking IP source. Thirdly, the flexible advanced entropy based (FAEB) scheme is to eliminate high rate DDoS (HR-DDoS) and flash crowd (FC) attacks. Compared to the previous researches, our framework’s design provides an efficient protection for web applications against all sorts of DoS/DDoS attacks. |
| format | Article |
| id | doaj-art-d09bdd3a89ba429ebac106ee1931b20b |
| institution | Kabale University |
| issn | 2356-6140 1537-744X |
| language | English |
| publishDate | 2015-01-01 |
| publisher | Wiley |
| record_format | Article |
| series | The Scientific World Journal |
| spelling | doaj-art-d09bdd3a89ba429ebac106ee1931b20b2025-02-03T05:43:57ZengWileyThe Scientific World Journal2356-61401537-744X2015-01-01201510.1155/2015/238230238230A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service AttacksMohammed A. Saleh0Azizah Abdul Manaf1Faculty of Computing, Universiti Teknologi Malaysia (UTM), 81310 Skudai, Johor, MalaysiaAdvanced Informatics School, Universiti Teknologi Malaysia, 54100 Kuala Lumpur, MalaysiaThe growth of web technology has brought convenience to our life, since it has become the most important communication channel. However, now this merit is threatened by complicated network-based attacks, such as denial of service (DoS) and distributed denial of service (DDoS) attacks. Despite many researchers’ efforts, no optimal solution that addresses all sorts of HTTP DoS/DDoS attacks is on offer. Therefore, this research aims to fix this gap by designing an alternative solution called a flexible, collaborative, multilayer, DDoS prevention framework (FCMDPF). The innovative design of the FCMDPF framework handles all aspects of HTTP-based DoS/DDoS attacks through the following three subsequent framework’s schemes (layers). Firstly, an outer blocking (OB) scheme blocks attacking IP source if it is listed on the black list table. Secondly, the service traceback oriented architecture (STBOA) scheme is to validate whether the incoming request is launched by a human or by an automated tool. Then, it traces back the true attacking IP source. Thirdly, the flexible advanced entropy based (FAEB) scheme is to eliminate high rate DDoS (HR-DDoS) and flash crowd (FC) attacks. Compared to the previous researches, our framework’s design provides an efficient protection for web applications against all sorts of DoS/DDoS attacks.http://dx.doi.org/10.1155/2015/238230 |
| spellingShingle | Mohammed A. Saleh Azizah Abdul Manaf A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service Attacks The Scientific World Journal |
| title | A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service Attacks |
| title_full | A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service Attacks |
| title_fullStr | A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service Attacks |
| title_full_unstemmed | A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service Attacks |
| title_short | A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service Attacks |
| title_sort | novel protective framework for defeating http based denial of service and distributed denial of service attacks |
| url | http://dx.doi.org/10.1155/2015/238230 |
| work_keys_str_mv | AT mohammedasaleh anovelprotectiveframeworkfordefeatinghttpbaseddenialofserviceanddistributeddenialofserviceattacks AT azizahabdulmanaf anovelprotectiveframeworkfordefeatinghttpbaseddenialofserviceanddistributeddenialofserviceattacks AT mohammedasaleh novelprotectiveframeworkfordefeatinghttpbaseddenialofserviceanddistributeddenialofserviceattacks AT azizahabdulmanaf novelprotectiveframeworkfordefeatinghttpbaseddenialofserviceanddistributeddenialofserviceattacks |