Skip to main content

Application-Level Denial of Service

  • Reference work entry

Synonyms

Smart/algorithmic denial of service

Related Concepts

Availability; DoS Detection; DoS Pushback; Jamming Attack Defense; Network Bandwidth DoS; Overlay-Based DoS Defenses; Packet-Dropping Attack; SYN Cookie Defense; SYN Flood Attack; Trust Management

Definition

Application-level denial of service (DoS) attacks are a class of emerging DoS attacks that target higher layers in an application stack as against network layer attacks. Application-level DoS attacks essentially mimic flash crowds with the goal of severely crippling an electronic service and evading traditional DoS filters by morphing the attack requests so that they are nearly indistinguishable from the legitimate requests.

Background

DoS attacks attempt to render an electronic service unavailable to its intended users. Traditional DoS attacks typically refer to flooding-based attacks that attempt to inundate a Web server with numerous requests with the goal of exhausting the server’s computational or networking...

This is a preview of subscription content, access via your institution.

Buying options

Chapter
USD   29.95
Price excludes VAT (USA)
  • DOI: 10.1007/978-1-4419-5906-5_262
  • Chapter length: 3 pages
  • Instant PDF download
  • Readable on all devices
  • Own it forever
  • Exclusive offer for individuals only
  • Tax calculation will be finalised during checkout
eBook
USD   849.99
Price excludes VAT (USA)
  • ISBN: 978-1-4419-5906-5
  • Instant PDF download
  • Readable on all devices
  • Own it forever
  • Exclusive offer for individuals only
  • Tax calculation will be finalised during checkout
Hardcover Book
USD   999.99
Price excludes VAT (USA)

Recommended Reading

  1. Srivatsa M, Iyengar A, Yin J, Liu L (2008) Mitigating application level denial of service attacks on web servers: a client transparent approach. ACM Trans Web 2(3)

    Google Scholar 

  2. Crosby SA, Wallach DS (2003) Denial of service via algorithmic complexity attacks. In USENIX security symposium

    Google Scholar 

  3. CERT (2004) Incident Note IN-2004–01 W32/Novarg.A Virus

    Google Scholar 

  4. Leyden J (2003) East European gangs in online protection racket www.theregister.co.uk/2003/11/12/east-european-gangs-in-online/

  5. Jung J, Krishnamurthy B, Rabinovich M (2002) Flash crowds and denial of service attacks: characterization and implications for CDNs and web sites. In World Wide Web conference (WWW)

    Google Scholar 

  6. Kandula S, Katabi D, Jacob M, Berger A (2005) Botz-4-sale: surviving organized DDoS attacks that mimic flash crowds. In Networks Systems Design and Implementation (NSDI)

    Google Scholar 

  7. Poulsen K (2004) FBI busts alleged DDoS mafia. www.securityfocus.com/news/9411

  8. Bicakci K, Crispo B, Tanenbaum AS (2006) Reverse SSL: improved server performance and DoS resistance for SSL handshakes. In CRYPTO

    Google Scholar 

Download references

Author information

Authors and Affiliations

Authors

Editor information

Editors and Affiliations

Rights and permissions

Reprints and Permissions

Copyright information

© 2011 Springer Science+Business Media, LLC

About this entry

Cite this entry

Srivatsa, M., Iyengar, A. (2011). Application-Level Denial of Service. In: van Tilborg, H.C.A., Jajodia, S. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5906-5_262

Download citation