RTO randomization for Low rate DOS attack on a Feedback controlled system
Main Article Content
Abstract
Low rate Denial of Service attacks (LRDoS) send high intensity attack pulses in pulsed ON/Pulsed OFF pattern to degrade the Victims performance and could not be easily detected by the conventional DOS attack detection systems. In the growing need for internet applications, feedback control is a critical element of many internet services in order to ensure the agreed Quality of Service. Recent studies have revealed the vulnerability of feedback control based internet services to LRDoS and the behaviour of the systems under attack. In this paper, we analyse the LRDoS attack on a TCP flow in a feedback controlled system and suggest a practical solution to mitigate the performance degradation of the system due to the attack. Varied reviews about Shrew attacks on TCP flows have inferred that the throughput of the victim approaches a near Zero level when attacked by a pulse with a period tuned in the scale of the RTO. This presents a feasible solution to recover from throughput degradation by randomizing the RTO range meticulously. In this paper the benefits of feedback control and RTO randomization are combined to address the effects of TCP targeted LRDoS attack. This is achieved with our proposal to adjust the RTO range based on the Throughput received as feedback from system process output.
Keywords: TCP, low rate DOS, Shrew, RTO, throughput, feedback
Downloads
Article Details
COPYRIGHT
Submission of a manuscript implies: that the work described has not been published before, that it is not under consideration for publication elsewhere; that if and when the manuscript is accepted for publication, the authors agree to automatic transfer of the copyright to the publisher.
Authors who publish with this journal agree to the following terms:
- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work
- The journal allows the author(s) to retain publishing rights without restrictions.
- The journal allows the author(s) to hold the copyright without restrictions.