A signaling architecture against dos attacks
نویسندگان
چکیده
Denial of service (DoS) attacks figure highly among the dangers that face the Internet. Many research studies deal with DoS, proposing models and/or architectures to stop this threat. The proposed solutions vary between prevention, detection, filtering and traceback of the attack. The latter (attack traceback) constitutes an important part of the DoS defense. The most complex issue it has to face is related to the fact that attackers often used spoofed or incorrect IP addresses, thus disguising the true origin. In this work, we propose a signaling architecture and a security-oriented signaling protocol named 3SP (Simple Security Signaling Protocol). This solution makes it easier to trace both the DoS and other types of attack back to their sources; it is simple, robust and efficient against IP spoofing, and thus constitutes a novel and efficient approach to deal with the attack traceback problem.
منابع مشابه
DoS attacks exploiting signaling in UMTS and IMS
The Universal Mobile Telecommunication Standard (UMTS) is continuously evolving to meet the growing demand of modern mobile and Internet applications for high capacity and advanced features in security and quality of service. Although admittedly enhanced in terms of security when compared to 2G systems, UMTS still has weaknesses that can lead to security incidents. In this paper we investigate ...
متن کاملSignaling-Oriented DoS Attacks in UMTS Networks
The Universal Mobile Telecommunication Standard (UMTS) is the Third Generation (3G) mobile technology with the widest public acceptance. Although, enhanced in matters of security, comparing to its predecessor i.e., the GSM, it still has vulnerabilities that can lead to security breach. In this paper we investigate the vulnerabilities of the UMTS architecture that can be exploited by a malicious...
متن کاملA Signaling Architecture for Network Traffic Authorization to Prevent form DoS Attacks
We present a signaling architecture for network traffic authorization, Permissionbased Sending (PBS). This architecture aims to prevent Denial-of-Service (DoS) attacks and other forms of unauthorized traffic. Towards this goal, PBS takes a hybrid approach: a proactive approach of explicit permissions and a reactive approach of monitoring and countering attacks. On-path signaling is used to conf...
متن کاملFramework for Defending against Denial of Service Attacks in Wireless Networks
Wireless mobile nodes have extremely limited resources and are easily vulnerable to Denial of Service (DoS) attacks. The traditional techniques that can detect or prevent DoS attacks in wired networks often require considerable resources such as processing power, memory, and storage space. Hence, it is not possible to deploy the traditional techniques on the wireless nodes. In this paper, we id...
متن کاملDefence Against Dos Attacks Using a Partitioned Overlay Network
According to general statistics, around thousands of DOS and DDOS attacks have been carried out in the years 2009 and 2010. Choosing this problem for research was because everything in the industrial or mechanical sector is now controlled over the network through applications thus, securing these networks against DOS attacks is very important because once compromised it can cause a major damage...
متن کامل