Design and analysis of a replicated elusive server scheme for mitigating denial of service attacks

Chatree Sangpachatanaruk, Sherif M. Khattab, Taieb Znati, Rami Melhem, Daniel Mossé

Research output: Contribution to journalArticlepeer-review

9 Citations (Scopus)

Abstract

The paper proposes a scheme, referred to as proactive server roaming, to mitigate the effects of denial of service (DoS) attacks. The scheme is based on the concept of "replicated elusive service", which through server roaming, causes the service to physically migrate from one physical location to another. Furthermore, the proactiveness of the scheme makes it difficult for attackers to guess when or where servers roam. The combined effect of elusive service replication and proactive roaming makes the scheme resilient to DoS attacks, thereby ensuring a high-level of quality of service. The paper describes the basic components of the scheme and discusses a simulation study to assess the performance of the scheme for different types of DoS attacks. The details of the NS2-based design and implementation of the server roaming strategy to mitigate the DoS attacks are provided, along with a thorough discussion and analysis of the simulation results.

Original languageEnglish
Pages (from-to)15-29
Number of pages15
JournalJournal of Systems and Software
Volume73
Issue number1 SPEC. ISS.
DOIs
Publication statusPublished - Sep 2004
Externally publishedYes

Keywords

  • Denial of service attacks
  • Elusive servers
  • Migration
  • Performance analysis
  • Replication
  • Security
  • Simulation

ASJC Scopus subject areas

  • Software
  • Information Systems
  • Hardware and Architecture

Fingerprint

Dive into the research topics of 'Design and analysis of a replicated elusive server scheme for mitigating denial of service attacks'. Together they form a unique fingerprint.

Cite this