The Rising Tide: DDoS from Defective Designs and Defaults
نویسنده
چکیده
We consider the phenomenon of distributed denial of service attacks that occur through design defects (and poorly chosen defaults) in legitimately operated, entirely secure systems. Particular reference is made to a recently discovered “attack” on stratum 1 Network Time Protocol servers by routers manufactured by D-Link for the consumer market, the latest example of incidents that stretch back for decades. Consideration is given to how these attacks might have been avoided, and why such failures continue to occur.
منابع مشابه
2nd Workshop on Steps to Reducing Unwanted Traffic on the Internet (sruti '06) the Rising Tide: Ddos from Defective Designs and Defaults Efficient and Secure Source Authenti- Cation with Packet Passports Cookies along Trust-boundaries: Accurate and Deployable Flood Protection
Rob Thomas of Team Cymru began the workshop with a scintillating keynote address on the underground economy. Although much of the research community working on unwanted traffic issues has focused on technical aspects of various subproblems, Rob brought his direct experience with ongoing study of the underground economy dominated by the criminal elements trading in credit cards, passwords, and t...
متن کاملF-STONE: A Fast Real-Time DDOS Attack Detection Method Using an Improved Historical Memory Management
Distributed Denial of Service (DDoS) is a common attack in recent years that can deplete the bandwidth of victim nodes by flooding packets. Based on the type and quantity of traffic used for the attack and the exploited vulnerability of the target, DDoS attacks are grouped into three categories as Volumetric attacks, Protocol attacks and Application attacks. The volumetric attack, which the pro...
متن کاملSecular trends and evaluation of complex interventions: the rising tide phenomenon
Evaluations of service delivery interventions with contemporaneous controls often yield null results, even when the intervention appeared promising in advance. There can be many reasons for null results. In this paper we introduce the concept of a 'rising tide' phenomenon being a possible explanation of null results. We note that evaluations of service delivery interventions often occur when aw...
متن کاملSustaining Availability of Web Services under Distributed Denial of Service Attacks
The recent tide of Distributed Denial of Service (DDoS) attacks against high-profile web sites demonstrate how devastating DDoS attacks are and how defenseless the Internet is under such attacks. We design a practical DDoS defense system that can protect the availability of web services during severe DDoS attacks. The basic idea behind our system is to isolate and protect legitimate traffic fro...
متن کاملمدل سازی هیدرودینامیکی جنوب خلیج فارس با استفاده از مدلDelft3D-FLOW
The goal of this study was to simulate the hydrodynamics induced by con-current wind and tide loading in the southern part of the Persian Gulf. The model was calibrated with a 28 day lunar cycle, in which both neap and spring tide were modeled. The model boundaries were forced using tidal water levels obtained from the United Hydrographic Tide Tables. Wind data extracted from PERGOS database wa...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2006