Mitigation of Application Layer DDoS Flood Attack Against Web Servers

The Application-layer Distributed Denial of Service (App-DDoS) attack is one of the most menacing types of cyberattacks that circumvent web servers. Since the attackers have developed different techniques and methods, preventing App-DDoS attacks has become more difficult than ever before. One of the...

Full description

Bibliographic Details
Main Authors: Ahamed Aljuhani, Talal Alharbi, Bradley Taylor
Format: Article
Language:English
Published: Naif University Publishing House 2019-03-01
Series:Journal of Information Security and Cybercrimes Research
Subjects:
Online Access:https://journals.nauss.edu.sa/index.php/JISCR/article/view/860
_version_ 1827320130620620800
author Ahamed Aljuhani
Talal Alharbi
Bradley Taylor
author_facet Ahamed Aljuhani
Talal Alharbi
Bradley Taylor
author_sort Ahamed Aljuhani
collection DOAJ
description The Application-layer Distributed Denial of Service (App-DDoS) attack is one of the most menacing types of cyberattacks that circumvent web servers. Since the attackers have developed different techniques and methods, preventing App-DDoS attacks has become more difficult than ever before. One of the most commonly and targeted protocols in the application-layer is HTTP-GET flooding attacks. The attacker sends a large number of HTTP-GET requests from different infected devices to force the server to assign the maximum resources available in response to every single request. The objective of this attack is to exhaust the server’s resources and deny service to the legitimate users. The App-DDoS attacks affect Quality of Service (QoS) and are extremely costly in terms of resource exhaustion. In this paper, we discuss development and testing of an App-DDoS attack detection and mitigation model in order to defend web servers against threats. Our design model employs three principle states: normal, screening and suspicious. The defense model transits between these modes based on the server load. We use Machine Learning (ML) techniques to provide high detection accuracy of App-DDoS attacks. Our experimental results demonstrate that this defense system is effective against App-DDoS attack.
first_indexed 2024-04-25T00:40:06Z
format Article
id doaj.art-ced49e2e017f4518bac68c605c7f9dfb
institution Directory Open Access Journal
issn 1658-7782
1658-7790
language English
last_indexed 2024-04-25T00:40:06Z
publishDate 2019-03-01
publisher Naif University Publishing House
record_format Article
series Journal of Information Security and Cybercrimes Research
spelling doaj.art-ced49e2e017f4518bac68c605c7f9dfb2024-03-12T11:14:08ZengNaif University Publishing HouseJournal of Information Security and Cybercrimes Research1658-77821658-77902019-03-0121839510.26735/16587790.2019.002369Mitigation of Application Layer DDoS Flood Attack Against Web ServersAhamed Aljuhani0Talal Alharbi1Bradley Taylor21.Electrical Engineering & Computer Science Department, School of Engineering, The Catholic University of America, United States 2. Department of Information Technology, Faculty of Computers & Information Technology, University of Tabuk, Tabuk, Saudi Arabia.1. Electrical Engineering & Computer Science Department, School of Engineering, The Catholic University of America, United States 2. College of Computer Science and Engineering, University of Jeddah, Jeddah, Saudi ArabiaElectrical Engineering & Computer Science Department, School of Engineering, The Catholic University of America, United StatesThe Application-layer Distributed Denial of Service (App-DDoS) attack is one of the most menacing types of cyberattacks that circumvent web servers. Since the attackers have developed different techniques and methods, preventing App-DDoS attacks has become more difficult than ever before. One of the most commonly and targeted protocols in the application-layer is HTTP-GET flooding attacks. The attacker sends a large number of HTTP-GET requests from different infected devices to force the server to assign the maximum resources available in response to every single request. The objective of this attack is to exhaust the server’s resources and deny service to the legitimate users. The App-DDoS attacks affect Quality of Service (QoS) and are extremely costly in terms of resource exhaustion. In this paper, we discuss development and testing of an App-DDoS attack detection and mitigation model in order to defend web servers against threats. Our design model employs three principle states: normal, screening and suspicious. The defense model transits between these modes based on the server load. We use Machine Learning (ML) techniques to provide high detection accuracy of App-DDoS attacks. Our experimental results demonstrate that this defense system is effective against App-DDoS attack.https://journals.nauss.edu.sa/index.php/JISCR/article/view/860ddosapplication layer ddosapp-ddos attackhttp getddos httpsecurityapp-ddos detectionmitigationnfv
spellingShingle Ahamed Aljuhani
Talal Alharbi
Bradley Taylor
Mitigation of Application Layer DDoS Flood Attack Against Web Servers
Journal of Information Security and Cybercrimes Research
ddos
application layer ddos
app-ddos attack
http get
ddos http
security
app-ddos detection
mitigation
nfv
title Mitigation of Application Layer DDoS Flood Attack Against Web Servers
title_full Mitigation of Application Layer DDoS Flood Attack Against Web Servers
title_fullStr Mitigation of Application Layer DDoS Flood Attack Against Web Servers
title_full_unstemmed Mitigation of Application Layer DDoS Flood Attack Against Web Servers
title_short Mitigation of Application Layer DDoS Flood Attack Against Web Servers
title_sort mitigation of application layer ddos flood attack against web servers
topic ddos
application layer ddos
app-ddos attack
http get
ddos http
security
app-ddos detection
mitigation
nfv
url https://journals.nauss.edu.sa/index.php/JISCR/article/view/860
work_keys_str_mv AT ahamedaljuhani mitigationofapplicationlayerddosfloodattackagainstwebservers
AT talalalharbi mitigationofapplicationlayerddosfloodattackagainstwebservers
AT bradleytaylor mitigationofapplicationlayerddosfloodattackagainstwebservers