Browse > Article
http://dx.doi.org/10.9708/jksci.2013.18.8.095

One-time Session Key based HTTP DDoS Defense Mechanisms  

Choi, Sang-Yong (KAIST Cyber Security Research Center)
Kang, Ik-Seon (KAIST Cyber Security Research Center)
Kim, Yong-Min (Dept. of Electronic Commerce, Chonnam National University)
Abstract
DDoS attacks have became as a social threat since 2009 7.7 DDoS turmoil. Even though defence techniques have been developing to provide against those threats, they become much more sophisticate. In recent years, the attack form of DDoS is changing from high amount of traffic attack of network layers to highly sophisticate small amount of application layers. To make matters worse, attack agent for the attack has became very intelligent so that it is difficult to be blocked since it can't be distinguished from normal PCs. In the user authentication system(such as CAPTCHA) User intervention is required to distinguish normal PCs and intelligent attack agents and in particular, in a NAT environment, IP-based blocking method can be cut off the normal users traffic at the same time. This research examined defense techniques which are able to distinguish between agent and normal PC and effectively block ways the HTTP DDoS offense applying one-time session key based authentication method using Cookie which is used in HTTP protocol to protect web sever from sophisticate application layer of DDoS.
Keywords
DDoS Attack; Cookie; Defense; Authentication;
Citations & Related Records
Times Cited By KSCI : 2  (Citation Analysis)
연도 인용수 순위
1 Jinwon Seo, "The Design of Anti-DDos System using Defense on Depth," Journal of Korea Institute of Information Security and Cryptology Vol. 22, No. 3, pp. 679-689, July, 2012.   과학기술학회마을
2 Changbaek Jang, "Using CDN Technique Smart DNS of DDoS Attack Protection," Master's Thesis, Soongsil University, 2010.
3 Jungmin Choi, "Design of dynamic load balancing algorithm for anti-DDoS system," Master's Thesis, Konkuk University, 2011.
4 SungSoo Park, "A Study on CAPTCHA-Based Mitigation of DDoS Attacks," Master's Thesis, Dongguk University, 2010.
5 Jelena Mirkovic, Peter Reiher, "A Taxonomy of DDoS Attack and DdoS Defense Mechanisms," ACM SIGCOMM computer Communitions Review, Vol. 34, No. 2, pp. 39-54. April. 2004
6 Daeseop Lee, "Analysis of Defense Method for HTTP POST DDoS Attack base on Content-Length Control," Journal of Korea Institute of Information Security and Cryptology, Vol. 22, No. 4, pp. 809-817, August. 2012.   과학기술학회마을
7 Slow Read DDoS, https://community.qualys.com /blogs/securitylabs/2012/01/05/slow-read
8 Jahyun Koo, "Type and Response for Denial of Service," Institute for Information Technology Advancement, Weekly Technical Trends, Vol. 1377, Dec. 2008.
9 Kelly jackson Higgins, "Researchers To Demonstrate New Attack That Exploits HTTP", 2010 OWASP AppSec Conference, Nov. 2010
10 Slowloris HTTP DoS, http://ha.ckers.org/slowloris/
11 secunuews, http://www.ahnlab.com/kr/site /securityinfo/secunews/secuNewsView.do?menu_ dist=2&seq= 16316
12 Ahnlab ASEC Report, http://download.ahnlab .com/ asecReport/ASEC_Report_200907.pdf,
13 3.4 DDoS Analysis Report, http://www. ahnlab .com
14 Laura Feinstein, Dan Schnackenberg, "Statistial Approaches to DDoS Attack Detection and Response" DARPA Information Survivability conference and Exposition, pp. 303-314, April.2003
15 RFC 2109 - HTTP State Management Mechanism
16 Namgyun Baek, " A Study on Efficient DDoS Attack Defense Scheme Using Performance Measurement Metrics based on Web Protocol's Features," PhD thesis, Soongsil University, 2011.
17 Dongmaeng Kim, "A Study of Information System Optimization for DDoS Attaks resopnse" Master's Thesis, Konkuk University, 2012.
18 Jonggap Jeung, "A client-based DDoS attack defense mechanism through user authentication" Master's Thesis, Korea University, 2012.
19 RFC 2616 - Hypertext Transfer Protocol - HTTP/1.1