Countermeasures on Application Level Low-Rate Denial-of-Service Attack

2012 ◽  
pp. 70-80 ◽  
Author(s):  
Yajuan Tang
Keyword(s):  
Denial Of Service ◽  
Denial Of Service Attack ◽  
Service Attack ◽  
Low Rate

Low rate TCP denial-of-service attack detection at edge routers

2005 ◽  
Vol 9 (4) ◽  
pp. 363-365 ◽  
Author(s):  
A. Shevtekar ◽  
K. Anantharam ◽  
N. Ansari
Keyword(s):  
Denial Of Service ◽  
Attack Detection ◽  
Denial Of Service Attack ◽  
Service Attack ◽  
Low Rate

scholarly journals SlowTT: A Slow Denial of Service against IoT Networks

Information ◽  
2020 ◽  
Vol 11 (9) ◽  
pp. 452
Author(s):  
Ivan Vaccari ◽  
Maurizio Aiello ◽  
Enrico Cambiaso
Keyword(s):  
Internet Of Things ◽  
Denial Of Service ◽  
Computational Power ◽  
Message Queue ◽  
Denial Of Service Attack ◽  
Research Activities ◽  
Cyber Threat ◽  
Service Attack ◽  
Long Time ◽  
Low Rate

The security of Internet of Things environments is a critical and trending topic, due to the nature of the networks and the sensitivity of the exchanged information. In this paper, we investigate the security of the Message Queue Telemetry Transport (MQTT) protocol, widely adopted in IoT infrastructures. We exploit two specific weaknesses of MQTT, identified during our research activities, allowing the client to configure the KeepAlive parameter and MQTT packets to execute an innovative cyber threat against the MQTT broker. In order to validate the exploitation of such vulnerabilities, we propose SlowTT, a novel “Slow” denial of service attack aimed at targeting MQTT through low-rate techniques, characterized by minimum attack bandwidth and computational power requirements. We validate SlowTT against real MQTT services, by considering both plaintext and encrypted communications and by comparing the effects of the attack when targeting different application daemons and protocol versions. Results show that SlowTT is extremely successful, and it can exploit the identified vulnerability to execute a denial of service against the IoT network by keeping the connection alive for a long time.

scholarly journals SlowITe, a Novel Denial of Service Attack Affecting MQTT

Sensors ◽  
2020 ◽  
Vol 20 (10) ◽  
pp. 2932
Author(s):  
Ivan Vaccari ◽  
Maurizio Aiello ◽  
Enrico Cambiaso
Keyword(s):  
Internet Of Things ◽  
Denial Of Service ◽  
The Internet ◽  
Message Queue ◽  
Plain Text ◽  
Denial Of Service Attack ◽  
Service Attack ◽  
Iot Devices ◽  
The Internet Of Things ◽  
Low Rate

Security of the Internet of Things is a crucial topic, due to the criticality of the networks and the sensitivity of exchanged data. In this paper, we target the Message Queue Telemetry Transport (MQTT) protocol used in IoT environments for communication between IoT devices. We exploit a specific weakness of MQTT which was identified during our research, allowing the client to configure the behavior of the server. In order to validate the possibility to exploit such vulnerability, we propose SlowITe, a novel low-rate denial of service attack aimed to target MQTT through low-rate techniques. We validate SlowITe against real MQTT services, considering both plain text and encrypted communications and comparing the effects of the threat when targeting different daemons. Results show that the attack is successful and it is able to exploit the identified vulnerability to lead a DoS on the victim with limited attack resources.

On remote exploitation of TCP sender for low-rate flooding denial-of-service attack

2009 ◽  
Vol 13 (1) ◽  
pp. 46-48 ◽  
Author(s):  
V. Kumar ◽  
P. Jayalekshmy ◽  
G. Patra ◽  
R. Thangavelu
Keyword(s):  
Denial Of Service ◽  
Denial Of Service Attack ◽  
Service Attack ◽  
Low Rate

Modeling and Simulation of Low Rate of Denial of Service Attacks

2014 ◽  
Vol 484-485 ◽  
pp. 1063-1066
Author(s):  
Kui Liang Xia
Keyword(s):  
High Efficiency ◽  
Denial Of Service ◽  
Research Work ◽  
Attack Detection ◽  
Detection Methods ◽  
Dos Attacks ◽  
Denial Of Service Attack ◽  
Service Attack ◽  
User Data ◽  
Low Rate

The low-rate denial of service attack is more applicable to the network in recent years as a means of attack, which is different from the traditional field type DoS attacks at the network end system or network using adaptive mechanisms exist loopholes flow through the low-rate periodic attacks on the implementation of high-efficiency attacked by an intruder and not be found, resulting in loss of user data or a computer deadlock. LDos attack since there has been extensive attention of researchers, the attack signature analysis and detection methods to prevent network security have become an important research topic. Some have been proposed for the current attacks were classified LDoS describe and model, and then in NS-2 platform for experimental verification, and then LDoS attack detection to prevent difficulties are discussed and summarized for the future such attacks detection method research work to provide a reference.

Sign in / Sign up

Export Citation Format

Share Document