An innovative approach to identify the IP address in denial-of-service (DoS) attacks based on Cauchy's integral theorem

Grid is an emerging technology that aims at utilizing resources efficiently and effectively, A botnet is a collection of infected computers and the common attacks are A Distributed denial of service attack (DDOS) is any type of attack on a networking structure to disable a server from servicing its clients. Attacks range from sending millions of requests to a server in an attempt to slow it down, flooding a server with large packets of invalid data, to sending requests with an Invalid or spoofed ip address. A botnet is taking action on the client itself via IRC Channels without the hackers having to login to the clients computer. In this paper we show the implementation and analysis of three main types of attack: Ping of Death, TCP SYN Flood, and Distributed DOS. The Ping of Death attack will be simulated against a Microsoft Windows xp, computer. The TCP SYN Flood attack will be simulated against a Microsoft Windows 2007 IIS FTP Server. Distributed DOS will be demonstrated by simulating a distribution zombie program that will carry the Ping of Death attack. This paper focuses on improving the efficiency of the system performance over the network by implementing algorithm, It demonstrate the potential damage from DOS attacks and analyze the ramifications of the damage.

Download Full-text

DoS attacks detection in MQTT networks

Indonesian Journal of Electrical Engineering and Computer Science ◽

10.11591/ijeecs.v21.i1.pp601-608 ◽

2021 ◽

Vol 21 (1) ◽

pp. 601

Author(s):

Dmitrii Dikii ◽

Sergey Arustamov ◽

Aleksey Grishentsev

Keyword(s):

Support Vector Machine ◽

Multilayer Perceptron ◽

Denial Of Service ◽

Attack Detection ◽

Support Vector ◽

Data Sets ◽

Dos Attacks ◽

Ip Address ◽

Size Number ◽

Smo Algorithm

<span>The paper considers the problem of protecting the Internet of things infrastructure against denial-of-service (DoS) attacks at the application level. The authors considered parameters that affect the network gateway workload: message frequency, payload size, number of recipients and some others. We proposed a modular structure of the attack detection tool presented by three classifiers that use the following attributes: username, device ID, and IP-address. The following types of classifiers have been the objects for the research: multilayer perceptron, random forest algorithm, and modifications of the support vector machine. Some scenarios for the behavior of network devices have been simulated. It was proved that for the proposed feature vector on simulated training and test data sets, the best results have been shown by a multilayer perceptron and a support vector machine with a radial basis function of the kernel and optimization with SMO algorithm. The authors also determined the conditions under which the selected classifiers have the best quality of recognizing abnormal and legitimate traffic in MQTT networks. </span>

Download Full-text

A Secure Protocol against Selfish and Pollution Attacker Misbehavior in Clustered WSNs

Electronics ◽

10.3390/electronics10111244 ◽

2021 ◽

Vol 10 (11) ◽

pp. 1244

Author(s):

Hana Rhim ◽

Damien Sauveron ◽

Ryma Abassi ◽

Karim Tamine ◽

Sihem Guemara

Keyword(s):

Denial Of Service ◽

Base Station ◽

Hierarchical Organization ◽

Secure Routing ◽

Sensor Nodes ◽

Dos Attacks ◽

Linear Network ◽

Secure Protocol ◽

Misbehaving Nodes ◽

Pollution Attacks

Wireless sensor networks (WSNs) have been widely used for applications in numerous fields. One of the main challenges is the limited energy resources when designing secure routing in such networks. Hierarchical organization of nodes in the network can make efficient use of their resources. In this case, a subset of nodes, the cluster heads (CHs), is entrusted with transmitting messages from cluster nodes to the base station (BS). However, the existence of selfish or pollution attacker nodes in the network causes data transmission failure and damages the network availability and integrity. Mainly, when critical nodes like CH nodes misbehave by refusing to forward data to the BS, by modifying data in transit or by injecting polluted data, the whole network becomes defective. This paper presents a secure protocol against selfish and pollution attacker misbehavior in clustered WSNs, known as (SSP). It aims to thwart both selfish and pollution attacker misbehaviors, the former being a form of a Denial of Service (DoS) attack. In addition, it maintains a level of confidentiality against eavesdroppers. Based on a random linear network coding (NC) technique, the protocol uses pre-loaded matrices within sensor nodes to conceive a larger number of new packets from a set of initial data packets, thus creating data redundancy. Then, it transmits them through separate paths to the BS. Furthermore, it detects misbehaving nodes among CHs and executes a punishment mechanism using a control counter. The security analysis and simulation results demonstrate that the proposed solution is not only capable of preventing and detecting DoS attacks as well as pollution attacks, but can also maintain scalable and stable routing for large networks. The protocol means 100% of messages are successfully recovered and received at the BS when the percentage of lost packets is around 20%. Moreover, when the number of misbehaving nodes executing pollution attacks reaches a certain threshold, SSP scores a reception rate of correctly reconstructed messages equal to 100%. If the SSP protocol is not applied, the rate of reception of correctly reconstructed messages is reduced by 90% at the same case.

Download Full-text

Secure and DoS-Resilient Fragment Authentication in CCN-Based Vehicular Networks

Wireless Communications and Mobile Computing ◽

10.1155/2018/8071267 ◽

2018 ◽

Vol 2018 ◽

pp. 1-12

Author(s):

Sangwon Hyun ◽

Hyoungshick Kim

Keyword(s):

Vehicular Networks ◽

Denial Of Service ◽

Content Delivery ◽

Dos Attacks ◽

Promising Alternative ◽

Content Centric Networking ◽

Transmission Unit ◽

Communication Environments ◽

Maximum Transmission

Content-Centric Networking (CCN) is considered as a promising alternative to traditional IP-based networking for vehicle-to-everything communication environments. In general, CCN packets must be fragmented and reassembled based on the Maximum Transmission Unit (MTU) size of the content delivery path. It is thus challenging to securely protect fragmented packets against attackers who intentionally inject malicious fragments to disrupt normal services on CCN-based vehicular networks. This paper presents a new secure content fragmentation method that is resistant to Denial-of-Service (DoS) attacks in CCN-based vehicular networks. Our approach guarantees the authenticity of each fragment through the immediate fragment verification at interim nodes on the routing path. Our experiment results demonstrate that the proposed approach provides much stronger security than the existing approach named FIGOA, without imposing a significant overhead in the process. The proposed method achieves a high immediate verification probability of 98.2% on average, which is 52% higher than that of FIGOA, while requiring only 14% more fragments than FIGOA.

Download Full-text

An Efficient Method to Find Solutions for Transcendental Equations with Several Roots

International Journal of Engineering Mathematics ◽

10.1155/2015/523043 ◽

2015 ◽

Vol 2015 ◽

pp. 1-4 ◽

Cited By ~ 4

Author(s):

Rogelio Luck ◽

Gregory J. Zdaniuk ◽

Heejin Cho

Keyword(s):

Null Space ◽

Heat Conduction Problem ◽

Hankel Matrix ◽

Polynomial Equation ◽

Transient Heat Conduction ◽

Transcendental Equation ◽

Integral Theorem ◽

Transient Heat Conduction Problem ◽

Cauchy’S Integral Theorem ◽

Roots Of A Polynomial

This paper presents a method for obtaining a solution for all the roots of a transcendental equation within a bounded region by finding a polynomial equation with the same roots as the transcendental equation. The proposed method is developed using Cauchy’s integral theorem for complex variables and transforms the problem of finding the roots of a transcendental equation into an equivalent problem of finding roots of a polynomial equation with exactly the same roots. The interesting result is that the coefficients of the polynomial form a vector which lies in the null space of a Hankel matrix made up of the Fourier series coefficients of the inverse of the original transcendental equation. Then the explicit solution can be readily obtained using the complex fast Fourier transform. To conclude, the authors present an example by solving for the first three eigenvalues of the 1D transient heat conduction problem.

Download Full-text

MANETs performance analysis with dos attack at different routing protocols

International Journal of Engineering & Technology ◽

10.14419/ijet.v4i2.4609 ◽

2015 ◽

Vol 4 (2) ◽

pp. 390 ◽

Cited By ~ 3

Author(s):

Alaa Zain ◽

Heba El-khobby ◽

Hatem M. Abd Elkader ◽

Mostafa Abdelnaby

Keyword(s):

Routing Protocol ◽

Routing Protocols ◽

Ad Hoc ◽

Denial Of Service ◽

Geographic Routing ◽

Security Threat ◽

Dos Attacks ◽

Reactive Routing ◽

Hoc Networks ◽

The Impact

A Mobile Ad-Hoc Networks (MANET) is widely used in many industrial and people's life applications, such as earth monitoring, natural disaster prevention, agriculture biomedical related applications, and many other areas. Security threat is one of the major aspects of MANET, as it is one of the basic requirements of wireless sensor network, yet this problem has not been sufficiently explored. The main purpose of this paper is to study different MANETs routing protocols with three scenarios of Denial of Service (DoS) attacks on network layer using proactive routing protocol i.e. Optimized Link State Routing (OLSR) and Reactive routing protocols like Ad hoc On-Demand Distance Vector (AODV), Hybrid routing protocols like Geographic Routing Protocol (GRP). Moreover, a comparative analysis of DoS attacks for throughput, Data loss, delay and network load is taken into account. The performance of MANET under the attack is studied to find out which protocol is more vulnerable to the attack and how much is the impact of the attack on both protocols. The simulation is done using OPNET 17.

Download Full-text

CAUCHY’S INTEGRAL THEOREM AND ITS CONSEQUENCES

Real and Complex Analysis ◽

10.1201/b12330-37 ◽

2009 ◽

pp. 436-442

Keyword(s):

Integral Theorem ◽

Cauchy’S Integral Theorem

Download Full-text

Peningkatan Keamanan Router Mikrotik Terhadap Serangan Denial of Service (DoS)

Jurnal Sistim Informasi dan Teknologi ◽

10.37034/jsisfotek.v2i4.32 ◽

2020 ◽

pp. 115-123

Author(s):

Budi Jaya ◽

Y Yuhandri ◽

S Sumijan

Keyword(s):

Denial Of Service ◽

Digital Evidence ◽

Dos Attack ◽

Dos Attacks ◽

Research Results ◽

Security Enhancement ◽

Software And Hardware ◽

Operational Activities ◽

Network Router ◽

Live Forensics

Denial of Service (DoS) attacks are one of the most common attacks on website, networks, routers and servers, including on router mikrotik. A DoS attack aims to render a network router unable to service requests from authorized users. The result will disrupt the operational activities of the organization and cause material and non-material losses. In this study, a simulation and analysis of DoS attacks using the Live Forensics method were carried out and the router security enhancement from rectangular software and hardware. From the research results obtained digital evidence of DoS attacks in the form of IP addresses and attacker activity logs. In addition, the increase in router security in terms of software by using Firewall Filter and Firewall Raw has proven effective in preventing attacks. While improving router security in terms of hardware by setting a reset button on the router and firewall devices is also very necessary so that the router can avoid physical attacks by irresponsible persons

Download Full-text

DoS Attacks at Cooperative MAC

10.31224/osf.io/h5rtc ◽

2018 ◽

Author(s):

Kiramat

Keyword(s):

Wireless Networks ◽

Performance Improvement ◽

Wireless Lan ◽

Denial Of Service ◽

Channel Access ◽

Cooperative Network ◽

Mac Layer ◽

Dos Attacks ◽

Cooperative Protocols ◽

Cooperative Mac

—Cooperative networking brings performance improvement to most of theissues in wireless networks, such as fading or delay due to slow stations. However, due tocooperation when data is relayed via other nodes, there network is more prone to attacks.Since, channel access is very important for cooperation, most of the attacks happens at MAC.One of the most critical attack is denial of service, which is reason of cooperation failure.Therefore, the cooperative network as well as simple wireless LAN must be defensive againstDOS attacks.In this article we analyzed all possible of DoS attacks that can happen at MAC layer ofWLAN. The cooperative protocols must consider defense against these attacks. This articlealso provided survey of available solutions to these attacks. At the end it described itsdamages and cost as well as how to handle these attacks while devising cooperative MAC.

Download Full-text

Output Feedback NCS of DoS Attacks Triggered by Double-Ended Events

Security and Communication Networks ◽

10.1155/2021/6643034 ◽

2021 ◽

Vol 2021 ◽

pp. 1-14

Author(s):

Xinzhi Feng ◽

Yang Yang ◽

Xiaozhong Qi ◽

Chunming Xu ◽

Ze Ji

Keyword(s):

Control System ◽

Denial Of Service ◽

Network Control ◽

Control Performance ◽

Network Control System ◽

Dos Attack ◽

Dos Attacks ◽

Network Attacks ◽

Elastic Event ◽

Event Triggering

In recent years, the research of the network control system under the event triggering mechanism subjected to network attacks has attracted foreign and domestic scholars’ wide attention. Among all kinds of network attacks, denial-of-service (DoS) attack is considered the most likely to impact the performance of NCS significantly. The existing results on event triggering do not assess the occurrence of DoS attacks and controller changes, which will reduce the control performance of the addressed system. Aiming at the network control system attacked by DoS, this paper combines double-ended elastic event trigger control, DoS attack, and quantitative feedback control to study the stability of NCS with quantitative feedback of DoS attack triggered by a double-ended elastic event. Simulation examples show that this method can meet the requirements of control performance and counteract the known periodic DoS attacks, which save limited resources and improve the system’s antijamming ability.

Download Full-text