Home // SECURWARE 2017, The Eleventh International Conference on Emerging Security Information, Systems and Technologies // View article

A Method for Preventing Slow HTTP DoS attacks

Authors:
Koichi Ozaki
Astushi Kanai
Shigeaki Tanimoto

Keywords: Slow HTTP DoS Attack; session time; packet interval.

Abstract:
Abstract—A Slow HTTP DoS Attack looks like a genuine user and can block access to genuine users. Over the past few years, several studies have been made on the defense against Slow HTTP DoS Attacks. However, little attention has been given to a Slow HTTP DoS Attack that resembles a normal DoS Attack. In this paper, the effectiveness of setting the longest session time and the longest packet interval with an appropriate threshold was evaluated by changing each threshold and comparing the results. As a result, it turned out that the proposed method is effective. However, to prevent a Slow HTTP DoS attack completely, it is necessary to not only take measures for typical Slow HTTP DoS attacks but also set a threshold for anomaly detection in consideration of Slow HTTP DoS attacks that resemble a normal DoS attack.

Pages: 71 to 76

Copyright: Copyright (c) IARIA, 2017

Publication date: September 10, 2017

Published in: conference

ISSN: 2162-2116

ISBN: 978-1-61208-582-1

Location: Rome, Italy

Dates: from September 10, 2017 to September 14, 2017