SlowReq: A Weapon for Cyberwarfare Operations. Characteristics, Limits, Performance, Remediations
In the last years, with the advent of the Internet, cyberwarfare operations moved from the battlefield to the cyberspace, locally or remotely executing sabotage or espionage operations in order to weaken the enemy. Among the technologies and methods used during cyberwarfare actions, Denial of Service attacks are executed to reduce the availability of a particular service on a network. In this paper we present a Denial of Service tool that belongs to the Slow DoS Attacks category. We describe in detail the attack functioning and we compare the proposed threat with a similar one known as slowloris, showing the enhancements provided by the proposed tool.
Keywordsslow dos attack denial of service cyberwarfare
Unable to display preview. Download preview PDF.
- 2.Chen, T.M.: Stuxnet, the real start of cyber warfare? IEEE Network 24, 2–3 (2010)Google Scholar
- 3.Combs, M.M.: Impact of the Stuxnet Virus on Industrial Control Systems. In: XIII International Forum Modern Information Society Formation Problems, Perspectives, Innovation Approaches, pp. 5–10 (2012)Google Scholar
- 4.Cambiaso, E., et al.: Slow DoS Attacks: Definition and Categorization. International Journal of Trust Management in Computing and Communications (in press article, 2013)Google Scholar
- 5.Kuzmanovic, A., Knightly, E.W.: Low-rate TCP-targeted denial of service attacks: the shrew vs. the mice and elephants. In: Proceedings of the 2003 conference on Applications, Technologies, Architectures, and Protocols for Computer Communications, pp. 75–86 (2003)Google Scholar
- 8.Damon, E., et al.: Hands-on denial of service lab exercises using SlowLoris and RUDY. In: Proceedings of the 2012 Information Security Curriculum Development Conference, pp. 21–29 (2012)Google Scholar
- 9.MaxConnections - IIS 6.0, http://msdn.microsoft.com/en-us/library/ms524491v=vs.90.aspx (accessed in 2013)
- 10.Slow request dos/oom attack, http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2010_01.txt (accessed in 2013)
- 11.Apache MPM Common Directives - MaxClients Directive, http://httpd.apache.org/docs/2.2/mod/mpm_common.html-maxclients (accessed in 2013)