Encyclopedia of Cryptography and Security

2011 Edition
| Editors: Henk C. A. van Tilborg, Sushil Jajodia

Application-Level Denial of Service

  • Mudhakar Srivatsa
  • Arun Iyengar
Reference work entry
DOI: https://doi.org/10.1007/978-1-4419-5906-5_262


Related Concepts


Application-level denial of service (DoS) attacks are a class of emerging DoS attacks that target higher layers in an application stack as against network layer attacks. Application-level DoS attacks essentially mimic flash crowds with the goal of severely crippling an electronic service and evading traditional DoS filters by morphing the attack requests so that they are nearly indistinguishable from the legitimate requests.


DoS attacks attempt to render an electronic service unavailable to its intended users. Traditional DoS attacks typically refer to flooding-based attacks that attempt to inundate a Web server with numerous requests with the goal of exhausting the server’s computational or...

This is a preview of subscription content, log in to check access.

Recommended Reading

  1. 1.
    Srivatsa M, Iyengar A, Yin J, Liu L (2008) Mitigating application level denial of service attacks on web servers: a client transparent approach. ACM Trans Web 2(3)Google Scholar
  2. 2.
    Crosby SA, Wallach DS (2003) Denial of service via algorithmic complexity attacks. In USENIX security symposiumGoogle Scholar
  3. 3.
    CERT (2004) Incident Note IN-2004–01 W32/Novarg.A VirusGoogle Scholar
  4. 4.
    Leyden J (2003) East European gangs in online protection racket www.theregister.co.uk/2003/11/12/east-european-gangs-in-online/
  5. 5.
    Jung J, Krishnamurthy B, Rabinovich M (2002) Flash crowds and denial of service attacks: characterization and implications for CDNs and web sites. In World Wide Web conference (WWW)Google Scholar
  6. 6.
    Kandula S, Katabi D, Jacob M, Berger A (2005) Botz-4-sale: surviving organized DDoS attacks that mimic flash crowds. In Networks Systems Design and Implementation (NSDI)Google Scholar
  7. 7.
    Poulsen K (2004) FBI busts alleged DDoS mafia. www.securityfocus.com/news/9411
  8. 8.
    Bicakci K, Crispo B, Tanenbaum AS (2006) Reverse SSL: improved server performance and DoS resistance for SSL handshakes. In CRYPTOGoogle Scholar

Copyright information

© Springer Science+Business Media, LLC 2011

Authors and Affiliations

  • Mudhakar Srivatsa
    • 1
  • Arun Iyengar
    • 1
  1. 1.IBM Research DivisionThomas J. Watson Research CenterYorktown HeightsUSA