| 题名 | An OTP-based Mechanism for Defending Application Layer DDoS Attacks |
| 作者 | |
| 发表日期 | 2010-12-31 |
| 会议录名称 | 2010 THE 3RD INTERNATIONAL CONFERENCE ON COMPUTATIONAL INTELLIGENCE AND INDUSTRIAL APPLICATION (PACIIA2010), VOL IV 影响因子和分区 |
| 语种 | 英语 |
| 原始文献类型 | Proceedings Paper |
| 关键词 | DDos Attacks OTP Puzzle Web Service Application Layer |
| 摘要 | In this paper, we present the design and implementation of OTP-DEF, a kernel extension to protect web servers against application layer DDoS attacks. OTP-DEF provides authentication by using OTP-based tests, which is different from other systems that use graphical tests. First of all, according to the load of web server, an OTP-DEF web server should fall into one of three following modes: normal, suspected attack or confirmed attack mode, and the OTP-DEF authentication mechanism shall only be activated when web server is in suspected attack mode. Secondly, we use OTP as our puzzle, which can automatically change at the certain time interval. It makes our proposal can defend socially-engineered attack, copy attacks, replay attacks and Brute-Force Attack. Thirdly, OTP-DEF uses an intermediate stage to identify the IP addresses that ignore the test, and persistently bombard the server with requests despite repeated failures at solving the puzzles. These machines are zombies because their intent is to congest the server. Once these machines are identified, OTP-DEF blocks their requests, turns the tests off, and allows access to legitimate users who are unable or unwilling to solve tests. Finally, OTP-DEF requires no modifications to client software. |
| 资助项目 | Guangdong Natural Science Foundation Grant [10151027501000061] |
| 出版者 | IEEE |
| 出版地 | NEW YORK |
| ISSN | 1865-0929 |
| 卷号 | 227 CCIS |
| 期号 | PART 4 |
| 页码 | 215-219 |
| DOI | 10.1007/978-3-642-23226-8_51 |
| 页数 | 5 |
| WOS类目 | Computer Science, Artificial Intelligence ; Engineering, Electrical & Electronic |
| WOS研究方向 | Computer Science ; Engineering |
| WOS记录号 | WOS:000398415000055 |
| 收录类别 | CPCI ; EI |
| EI入藏号 | 20113614307658 |
| EI主题词 | Web services |
| 会议名称 | 3rd International Conference on Computational Intelligence and Industrial Application (PACIIA2010) |
| 会议地点 | Wuhan, PEOPLES R CHINA |
| 会议日期 | DEC 04-05, 2010 |
| 引用统计 | |
| 文献类型 | 会议论文 |
| 条目标识符 | https://kms.wmu.edu.cn/handle/3ETUA0LF/22028 |
| 专题 | 第一临床医学院(信息与工程学院)、附属第一医院_计算机与信息管理系 |
| 通讯作者 | Ye, Xi |
| 作者单位 | 1.Wenzhou Med Coll, Dept Comp Sci, Wenzhou, Zhejiang, Peoples R China; 2.Sun Yat Sen Univ, Sch Software, Guangzhou, Guangdong, Peoples R China |
| 第一作者单位 | 第一临床医学院(信息与工程学院)、附属第一医院_计算机与信息管理系 |
| 第一作者的第一单位 | 第一临床医学院(信息与工程学院)、附属第一医院_计算机与信息管理系 |
| 推荐引用方式 GB/T 7714 | Ye, Xi,Wen, Wushao,Ye, Yiru,et al. An OTP-based Mechanism for Defending Application Layer DDoS Attacks[C]. NEW YORK:IEEE,2010:215-219. |
条目包含的文件 | 条目无相关文件。 | |||||
| 个性服务 |
| 查看访问统计 |
| 谷歌学术 |
| 谷歌学术中相似的文章 |
| [Ye, Xi]的文章 |
| [Wen, Wushao]的文章 |
| [Ye, Yiru]的文章 |
| 百度学术 |
| 百度学术中相似的文章 |
| [Ye, Xi]的文章 |
| [Wen, Wushao]的文章 |
| [Ye, Yiru]的文章 |
| 必应学术 |
| 必应学术中相似的文章 |
| [Ye, Xi]的文章 |
| [Wen, Wushao]的文章 |
| [Ye, Yiru]的文章 |
| 相关权益政策 |
| 暂无数据 |
| 收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
学校主页 
图书馆
修改评论