Protecting Web Servers from Octopus Attacks

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Yoshinori Kobayashi Articles by Eric Y. Chen Articles by Yoshihiro Oyama Articles by Akinori Yonezawa

2006 International Symposium on Applications and the Internet (SAINT'06)

Phoenix, Arizona

January 23-January 27

ISBN: 0-7695-2508-3

	ASCII Text	x
	Yoshinori Kobayashi, Eric Y. Chen, Yoshihiro Oyama, Akinori Yonezawa, "Protecting Web Servers from Octopus Attacks," Applications and the Internet, IEEE/IPSJ International Symposium on, pp. 82-85, 2006 International Symposium on Applications and the Internet (SAINT'06), 2006.

	BibTex	x
	@article{ 10.1109/SAINT.2006.52, author = {Yoshinori Kobayashi and Eric Y. Chen and Yoshihiro Oyama and Akinori Yonezawa}, title = {Protecting Web Servers from Octopus Attacks}, journal ={Applications and the Internet, IEEE/IPSJ International Symposium on}, volume = {0}, year = {2006}, isbn = {0-7695-2508-3}, pages = {82-85}, doi = {http://doi.ieeecomputersociety.org/10.1109/SAINT.2006.52}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Applications and the Internet, IEEE/IPSJ International Symposium on TI - Protecting Web Servers from Octopus Attacks SN - 0-7695-2508-3 SP82 EP85 A1 - Yoshinori Kobayashi, A1 - Eric Y. Chen, A1 - Yoshihiro Oyama, A1 - Akinori Yonezawa, PY - 2006 KW - null VL - 0 JA - Applications and the Internet, IEEE/IPSJ International Symposium on ER -

Yoshinori Kobayashi, University of Tokyo

Eric Y. Chen, NTT

Yoshihiro Oyama, University of Tokyo

Akinori Yonezawa, University of Tokyo

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/SAINT.2006.52

Denial-of-service (DoS) attacks are a major threat to the Internet and have not been completely solved in spite of much research effort. This paper deals with an important class of DoS attacks, called octopus attacks, which establish a flood of connections to a victim web server and prevent legitimate users from connecting to the server.Octopus attacks cause serious performance degradation of the targeted server. In this paper, we propose an approach for protecting web servers against octopus attacks. Our approach deploys an active monitor that monitors the network traffic arriving at a protected server. When there is an excessive number of connections to the server, this monitor resets the connection that is most likely to be an attacker's. We implemented this monitor on a Linux platform. Through experiments, we confirmed that our monitor enabled a web server to provide service to legitimateusers even when octopus attacks were made against the server.

Citation:

Yoshinori Kobayashi, Eric Y. Chen, Yoshihiro Oyama, Akinori Yonezawa, "Protecting Web Servers from Octopus Attacks," saint, pp.82-85, 2006 International Symposium on Applications and the Internet (SAINT'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.