Mitigation of Application Layer DDoS Flood Attack Against Web Servers
The Application-layer Distributed Denial of Service (App-DDoS) attack is one of the most menacing types of cyberattacks that circumvent web servers. Since the attackers have developed different techniques and methods, preventing App-DDoS attacks has become more difficult than ever before. One of the...
Main Authors: | , , |
---|---|
Format: | Article |
Language: | English |
Published: |
Naif University Publishing House
2019-03-01
|
Series: | Journal of Information Security and Cybercrimes Research |
Subjects: | |
Online Access: | https://journals.nauss.edu.sa/index.php/JISCR/article/view/860 |
_version_ | 1827320130620620800 |
---|---|
author | Ahamed Aljuhani Talal Alharbi Bradley Taylor |
author_facet | Ahamed Aljuhani Talal Alharbi Bradley Taylor |
author_sort | Ahamed Aljuhani |
collection | DOAJ |
description | The Application-layer Distributed Denial of Service (App-DDoS) attack is one of the most menacing types of cyberattacks
that circumvent web servers. Since the attackers have developed different techniques and methods, preventing
App-DDoS attacks has become more difficult than ever before. One of the most commonly and targeted protocols in
the application-layer is HTTP-GET flooding attacks. The attacker sends a large number of HTTP-GET requests from
different infected devices to force the server to assign the maximum resources available in response to every single
request. The objective of this attack is to exhaust the server’s resources and deny service to the legitimate users. The
App-DDoS attacks affect Quality of Service (QoS) and are extremely costly in terms of resource exhaustion. In this
paper, we discuss development and testing of an App-DDoS attack detection and mitigation model in order to defend web
servers against threats. Our design model employs three principle states: normal, screening and suspicious. The defense
model transits between these modes based on the server load. We use Machine Learning (ML) techniques to provide
high detection accuracy of App-DDoS attacks. Our experimental results demonstrate that this defense system is effective
against App-DDoS attack. |
first_indexed | 2024-04-25T00:40:06Z |
format | Article |
id | doaj.art-ced49e2e017f4518bac68c605c7f9dfb |
institution | Directory Open Access Journal |
issn | 1658-7782 1658-7790 |
language | English |
last_indexed | 2024-04-25T00:40:06Z |
publishDate | 2019-03-01 |
publisher | Naif University Publishing House |
record_format | Article |
series | Journal of Information Security and Cybercrimes Research |
spelling | doaj.art-ced49e2e017f4518bac68c605c7f9dfb2024-03-12T11:14:08ZengNaif University Publishing HouseJournal of Information Security and Cybercrimes Research1658-77821658-77902019-03-0121839510.26735/16587790.2019.002369Mitigation of Application Layer DDoS Flood Attack Against Web ServersAhamed Aljuhani0Talal Alharbi1Bradley Taylor21.Electrical Engineering & Computer Science Department, School of Engineering, The Catholic University of America, United States 2. Department of Information Technology, Faculty of Computers & Information Technology, University of Tabuk, Tabuk, Saudi Arabia.1. Electrical Engineering & Computer Science Department, School of Engineering, The Catholic University of America, United States 2. College of Computer Science and Engineering, University of Jeddah, Jeddah, Saudi ArabiaElectrical Engineering & Computer Science Department, School of Engineering, The Catholic University of America, United StatesThe Application-layer Distributed Denial of Service (App-DDoS) attack is one of the most menacing types of cyberattacks that circumvent web servers. Since the attackers have developed different techniques and methods, preventing App-DDoS attacks has become more difficult than ever before. One of the most commonly and targeted protocols in the application-layer is HTTP-GET flooding attacks. The attacker sends a large number of HTTP-GET requests from different infected devices to force the server to assign the maximum resources available in response to every single request. The objective of this attack is to exhaust the server’s resources and deny service to the legitimate users. The App-DDoS attacks affect Quality of Service (QoS) and are extremely costly in terms of resource exhaustion. In this paper, we discuss development and testing of an App-DDoS attack detection and mitigation model in order to defend web servers against threats. Our design model employs three principle states: normal, screening and suspicious. The defense model transits between these modes based on the server load. We use Machine Learning (ML) techniques to provide high detection accuracy of App-DDoS attacks. Our experimental results demonstrate that this defense system is effective against App-DDoS attack.https://journals.nauss.edu.sa/index.php/JISCR/article/view/860ddosapplication layer ddosapp-ddos attackhttp getddos httpsecurityapp-ddos detectionmitigationnfv |
spellingShingle | Ahamed Aljuhani Talal Alharbi Bradley Taylor Mitigation of Application Layer DDoS Flood Attack Against Web Servers Journal of Information Security and Cybercrimes Research ddos application layer ddos app-ddos attack http get ddos http security app-ddos detection mitigation nfv |
title | Mitigation of Application Layer DDoS Flood Attack Against Web Servers |
title_full | Mitigation of Application Layer DDoS Flood Attack Against Web Servers |
title_fullStr | Mitigation of Application Layer DDoS Flood Attack Against Web Servers |
title_full_unstemmed | Mitigation of Application Layer DDoS Flood Attack Against Web Servers |
title_short | Mitigation of Application Layer DDoS Flood Attack Against Web Servers |
title_sort | mitigation of application layer ddos flood attack against web servers |
topic | ddos application layer ddos app-ddos attack http get ddos http security app-ddos detection mitigation nfv |
url | https://journals.nauss.edu.sa/index.php/JISCR/article/view/860 |
work_keys_str_mv | AT ahamedaljuhani mitigationofapplicationlayerddosfloodattackagainstwebservers AT talalalharbi mitigationofapplicationlayerddosfloodattackagainstwebservers AT bradleytaylor mitigationofapplicationlayerddosfloodattackagainstwebservers |