You are here: silicon.com > Resources > White Papers > Networking and Communications > Network Technologies > TCP - IP

TCP - IP White Papers

Low-Rate TCP-Targeted Denial of Service Attacks

Tags:
tcp - ip

Overview Denial of Service attacks are presenting an increasing threat to the global inter-networking infrastructure. While TCP's congestion control algorithm is highly robust to diverse network conditions, its implicit assumption of end-system cooperation results in a wellknown vulnerability to attack by high-rate non-responsive flows. In this paper, this paper investigates a class of low-rate denial of service attacks which, unlike high-rate attacks, are difficult for routers and counter-DoS mechanisms to detect. Using a combination of analytical modeling, simulations, and Internet experiments, it shows that maliciously chosen low-rate DoS traffic patterns that exploit TCP's retransmission time-out mechanism can throttle TCP flows to a small fraction of their ideal rate while eluding detection.

Further White Paper Details
Publisher	Association for Computing Machinery	File Format	PDF
Date Published	August 2003
Format	White Papers
Topics	TCP - IP, Network Security, Denial of Service

Did you find this white paper useful? 2 out of 5 users found this white paper useful

Anthony & Sylvan Pools Takes the Plunge with VoIP

Publisher:
Shoretel

Sprint IPVoice Connect Fact Sheet

Publisher:
Sprint

Integrated Trade Systems, Inc. Is Able to Track and Ensure Timely Purchase Order Delivery by Using Biscom Delivery Server to Send Files Securely

Publisher:
Biscom

Stewart Title Guaranty Company Reduces Courier and FTP Costs Using Biscom Delivery Server for Timely, Accurate, and Trackable Distribution of Software to Their Customers

Publisher:
Biscom

Tags:
tcp - ip

Samba servers vulnerable to denial-of-service attacks

The flaws, known as denial-of-service vulnerabilities, basically could be used to disconnect Samba servers from the network by either overrunning the computer's memory to such an extent that it cannot function or by sending a specially crafted...

Channel:
Servers

Hackers learn to attack networks with IM

Security experts have discovered an instant-messaging tool that could change the way denial-of-service (DoS) attacks are performed. If instructed, the nmap bot is capable of a DoS attack by sending a massive amount of pings, a term hackers have...

Betting websites blackmailed with child pornography

We did have a DoS attack, but we don’t know where it came from,” said a spokeswoman from William Hill. The threat followed a more traditional denial of service attack that hit the company on Monday, taking Blue Square's site down for five hours.

Channel:
Malware

Virus hijacks open source servers

Security experts have warned that thousands of MySQL servers around the world could be press-ganged into launching a denial-of-service (DoS) attack that could bring down the website of a company the size of Microsoft.

Channel:
Malware
Tags:
myspool,
prevx,
mysql

Alarm bells over exploit for "extremely critical" IE flaw

Because the flaw was initially believed to involve only a potential DOS attack, Microsoft never issued a patch for the problem, Ullrich said. DOS attacks, which attempt to crash a system by flooding it with data, are typically considered less...

The biggest VoIP security threats - and how to stop them

The most serious threat to VoIP is a distributed denial of service (DoS) attack. Dan York, director of IP technology at PBX vendor Mitel, suggests companies use a separate VLAN for their voice traffic so that it can be prioritised in case of any...

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

TCP - IP White Papers

Low-Rate TCP-Targeted Denial of Service Attacks

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific