Professional Documents
Culture Documents
ABSTRACT
compare their performance. Existing DoS metrics equate service denial with
slow communication, low throughput, high resource utilization, and high loss
rate. These metrics are not versatile because they fail to monitor all traffic
correspond to good or poor service quality. Finally, they are not accurate
denial. We propose several DoS impact metrics that measure the quality of
they map QoS requirements for several applications into measurable traffic
Introduction
Denial of service (DoS) is a major threat. DoS severely disrupts
Problem Description
impact metrics whose use does not require significant changes in current
network topology.
Existing Scenario
goals. They collect one or several traffic measurements and compare their
or their distributions in the baseline and the attack case. Frequently used
loss, and division of a critical resource between the legitimate and the attack
traffic. If a defense is being evaluated, these metrics are also used for its
collateral damage.
cause researchers to choose ones they feel are the most relevant. Such
request/response time will properly signal DoS for two-way applications such
as Web, FTP, and DNS, but not for media traffic that is sensitive to one-way
delay, packet loss, and jitter. The lack of common DoS impact metrics
behaves differently under attack, but do not quantify which services have
been denied and how severely. To our knowledge, no studies show that
service quality, and a metric that holistically captures a human user’s QoS
composite metrics to expose the precise interaction of the DoS attack with
the legitimate traffic. We demonstrate that our metrics meet the goals of
multiple DoS scenarios and rich legitimate traffic mixes, and through
testbed is created by using java program and allows this topology to evaluate
and two attack networks are connected via two four software based core
routers. Each legitimate network has four server nodes and two client nodes,
and is connected to the core via an access router. Links between the access
router and the core have 100-Mbps bandwidth and 10-40-ms delay, while
other