DDoS attacks and defense mechanisms: Classification and state-of-the-art
Journal article, 2004

Denial of Service (DoS) attacks constitute one of the major threats and among the hardest security problems in today's Internet. Of particular concern are Distributed Denial of Service (DDoS) attacks, whose impact can be proportionally severe. With little or no advance warning, a DDoS attack can easily exhaust the computing and communication resources of its victim within a short period of time. Because of the seriousness of the problem many defense mechanisms have been proposed to combat these attacks. This paper presents a structural approach to the DDoS problem by developing a classification of DDoS attacks and DDoS defense mechanisms. Furthermore, important features of each attack and defense system category are described and advantages and disadvantages of each proposed scheme are outlined. The goal of the paper is to place some order into the existing attack and defense mechanisms, so that a better understanding of DDoS attacks can be achieved and subsequently more efficient and effective algorithms, techniques and procedures to combat these attacks may be developed. © 2003 Elsevier B.V. All rights reserved.

DDoS attacks

Defenses

Network security

Intrusion detection

DoS attacks

Author

C. Douligeris

Aikaterini Mitrokotsa

Chalmers, Department of Computer Engineering, Computer Security

Computer Networks

1389-1286 (ISSN)

Vol. 44 5 643-666

Areas of Advance

Information and Communication Technology

Subject Categories

Computer and Information Science

DOI

10.1016/j.comnet.2003.10.003

More information

Created

10/8/2017