RTO randomization for Low rate DOS attack on a Feedback controlled system

Jayanthi s, Arun S. Kumar


Low rate Denial of Service attacks (LRDoS) send high intensity attack pulses in pulsed ON/Pulsed OFF pattern to degrade the Victims performance and could not be easily detected by the conventional DOS attack detection systems. In the growing need for internet applications, feedback control is a critical element of many internet services in order to ensure the agreed Quality of Service. Recent studies have revealed the vulnerability of feedback control based internet services to LRDoS and the behaviour of the systems under attack. In this paper, we analyse the LRDoS attack on a TCP flow in a feedback controlled system and suggest a practical solution to mitigate the performance degradation of the system due to the attack. Varied reviews about Shrew attacks on TCP flows have inferred that the throughput of the victim approaches a near Zero level when attacked by a pulse with a period tuned in the scale of the RTO. This presents a feasible solution to recover from throughput degradation by randomizing the RTO range meticulously. In this paper the benefits of feedback control and RTO randomization are combined to address the effects of TCP targeted LRDoS attack. This is achieved with our proposal to adjust the RTO range based on the Throughput received as feedback from system process output.

Keywords: TCP, low rate DOS, Shrew, RTO, throughput, feedback

Full Text:


DOI: https://doi.org/10.26483/ijarcs.v6i2.2453


  • There are currently no refbacks.

Copyright (c) 2016 International Journal of Advanced Research in Computer Science