Generator of Slow Denial-of-Service Cyber Attacks
The result's identifiers
Result code in IS VaVaI
<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216305%3A26220%2F21%3APU141317" target="_blank" >RIV/00216305:26220/21:PU141317 - isvavai.cz</a>
Result on the web
<a href="https://www.mdpi.com/1424-8220/21/16/5473" target="_blank" >https://www.mdpi.com/1424-8220/21/16/5473</a>
DOI - Digital Object Identifier
<a href="http://dx.doi.org/10.3390/s21165473" target="_blank" >10.3390/s21165473</a>
Alternative languages
Result language
angličtina
Original language name
Generator of Slow Denial-of-Service Cyber Attacks
Original language description
In today’s world, the volume of cyber attacks grows every year. These attacks can cause many people or companies high financial losses or loss of private data. One of the most common types of attack on the Internet is a DoS (denial-of-service) attack, which, despite its simplicity, can cause catastrophic consequences. A slow DoS attack attempts to make the Internet service unavailable to users. Due to the small data flows, these attacks are very similar to legitimate users with a slow Internet connection. Accurate detection of these attacks is one of the biggest challenges in cybersecurity. In this paper, we implemented our proposal of eleven major and most dangerous slow DoS attacks and introduced an advanced attack generator for testing vulnerabilities of protocols, servers, and services. The main motivation for this research was the absence of a similarly comprehensive generator for testing slow DoS vulnerabilities in network systems. We built an experimental environment for testing our generator, and then we performed a security analysis of the five most used web servers. Based on the discovered vulnerabilities, we also discuss preventive and detection techniques to mitigate the attacks. In future research, our generator can be used for testing slow DoS security vulnerabilities and increasing the level of cyber security of various network systems.
Czech name
—
Czech description
—
Classification
Type
J<sub>imp</sub> - Article in a specialist periodical, which is included in the Web of Science database
CEP classification
—
OECD FORD branch
20203 - Telecommunications
Result continuities
Project
<a href="/en/project/FW01010474" target="_blank" >FW01010474: Network Service Availability Threat Analysis, Detection and Mitigation</a><br>
Continuities
P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)
Others
Publication year
2021
Confidentiality
S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů
Data specific for result type
Name of the periodical
SENSORS
ISSN
1424-8220
e-ISSN
1424-3210
Volume of the periodical
21
Issue of the periodical within the volume
16
Country of publishing house
CH - SWITZERLAND
Number of pages
27
Pages from-to
1-27
UT code for WoS article
000690003400001
EID of the result in the Scopus database
2-s2.0-85112377489