Skip to main content
SpringerLink
Log in

HTTP Application Layer DDoS Attack Mitigation Using Resources Monitor

  • Conference paper
  • First Online:
Proceedings of the International Conference on Advanced Intelligent Systems and Informatics 2017 (AISI 2017)

Part of the book series: Advances in Intelligent Systems and Computing ((AISC,volume 639))

  • 2847 Accesses

Abstract

Denial of Service attacks are one of the most annoying day to day challenges for any security expert and IT professional. This is according to the attack nature. It can be run against any kind of network resources, whether exposed to the Internet or internally in a corporate network, regardless of the type of service it provides and its role in the network. There is no one complete solution or unified framework method against this type of attack. The most dangerous type of DoS attack is the DDoS type. The attack flow from many sources at the same time. In the context of mitigation from DDoS attack, the detection mechanisms are the first step in the way. Mechanisms like IPS and firewall are not effective because of the current challenging DDOS attack methods against application layer. The attackers use vulnerability in the application itself to disrupt the service it provides. Current mitigation techniques depend on preventing the attack traffic from reaching web servers. In this paper we study http application layer DDoS attacks against web servers. We propose new approach for mitigation that depends on absorbing the attack effects on the web server and increases server’s resistance against DDoS attacks.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

References

  1. Oo, K.K., Ye, K.Z., Tun, H., Lin, K.Z., Portnov, E.M.: Enhancement of preventing application layer based on DDOS attacks by using hidden semi-markov model. Advances in Intelligent Systems and Computing, vol. 387, pp 125–135, Springer, Cham (2016)

    Google Scholar 

  2. Singh, K.J., De, T.: An approach of DDOS attack detection using classifiers. In: Emerging Research in Computing, Information, Communication and Applications, pp 429–437, Springer, India (2015)

    Google Scholar 

  3. Saleh, M.A., Manaf, A.A.: Protective frameworks and schemes to detect and prevent high rate DoS/DDoS and flash crowd attacks: a comprehensive review. In: Advanced Machine Learning Technologies and Applications, vol. 488, pp 145–152. Springer, Cham (2014)

    Google Scholar 

  4. Umarani, S., Sharmila, D.: Predicting application layer DDoS attacks using machine learning algorithms. Int. J. Comput. 8(10) (2014)

    Google Scholar 

  5. Boro, D., Bhattacharyya, D.K.: A dynamic protocol specific defense for high-rate DDoS flooding attacks. Microsyst. Technol. 23(3), 593–611 (2016). Springer, Heidelberg

    Google Scholar 

  6. Beitollahi, H., Deconinck, G.: A statistical technique to resist application-layer DDoS attacks. J. Ambient Intell. Humanized Comput. 5(3), 425–442 (2013). Springer, Heidelberg

    Google Scholar 

  7. Dick, U., Scheffer, T.: Learning to control a structured-prediction decoder for detection of HTTP-layer DDoS attackers. Kluwer Acad. J. Mach. Learn. 104(2), 385–410 (2016)

    Article  MathSciNet  MATH  Google Scholar 

  8. Choi, Y.-S., Kim, I.-K., Oh, J.-T., Jang, J.-S.: AIGG threshold based HTTP GET flooding attack detection. In: Information Security Applications, vol. 7690. Lecture Notes in Computer Science, pp 270–284. Springer, Heidelberg (2012)

    Google Scholar 

  9. Sharma, R.: Detection of low-rate dos attacks against HTTP servers using spectral analysis. In: IEEE/ACM International Conference on Advances in Social Networks Analysis and Mining (ASONAM), pp. 954–961, Paris (2015)

    Google Scholar 

  10. Maciá-Fernández, G., Rodríguez-Gómez, R.A., Díaz-Verdejo, J.E.: Defense techniques for low-rate DoS attacks against application servers. Comput. Netw. 54(15), 28, 2711–2727 (2010)

    Google Scholar 

  11. Adi, E., Baig, Z.A., Hingston, P., Lam, C.-P.: Distributed denial-of-service attacks against HTTP/2 services 19(1), 79–86 (2016). Springer Science+Business Media, New York

    Google Scholar 

  12. Rajesh, S.: Protection from application layer DDoS attacks for popular websites. Int. J. Comput. Electric. Eng. 5(6), December 2013

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Nile University, Cairo, Egypt

    Mohamed Aly Mohamed & Nashwa Abdelbaki

Authors
  1. Mohamed Aly Mohamed
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Nashwa Abdelbaki
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Nashwa Abdelbaki .

Editor information

Editors and Affiliations

  1. Faculty of Computers and Information, Information Technology Department, Cairo University, Giza, Egypt

    Aboul Ella Hassanien

  2. Dubai International Academic City, The British University in Dubai, Dubai, United Arab Emirates

    Khaled Shaalan

  3. Faculty of Computers and Informatics, Suez Canal University, Ismailia, Egypt

    Tarek Gaber

  4. Ain Shams University, Cairo, Egypt

    Mohamed F. Tolba

Rights and permissions

Reprints and permissions

Copyright information

© 2018 Springer International Publishing AG

About this paper

Cite this paper

Mohamed, M.A., Abdelbaki, N. (2018). HTTP Application Layer DDoS Attack Mitigation Using Resources Monitor. In: Hassanien, A., Shaalan, K., Gaber, T., Tolba, M. (eds) Proceedings of the International Conference on Advanced Intelligent Systems and Informatics 2017. AISI 2017. Advances in Intelligent Systems and Computing, vol 639. Springer, Cham. https://doi.org/10.1007/978-3-319-64861-3_20

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-64861-3_20

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-64860-6

  • Online ISBN: 978-3-319-64861-3

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation