Quantifying the Spectrum of Denial-of-Service Attacks through Internet Backscatter

None, None; None, None; None, None

Quantifying the Spectrum of Denial-of-Service Attacks through Internet Backscatter

Conference Paper (2017)

Author(s)

Norbert Blenn (TU Delft - Electrical Engineering, Mathematics and Computer Science)

Vincent Ghiëtte (External organisation)

Christian Doerr (TU Delft - Electrical Engineering, Mathematics and Computer Science)

Research Group

Cyber Security

Telescope Threat intelligence Backscatter Denial-of-service

DOI related publication

https://doi.org/10.1145/3098954.3098985 Final published version

To reference this document use

https://resolver.tudelft.nl/uuid:57fdb57c-1d79-4864-9edf-c1e7145ae4ee

More Info

expand_more

Publication Year

2017

Language

English

Research Group

Cyber Security

Article number

21

Pages (from-to)

1-10

ISBN (electronic)

978-1-4503-5257-4

Event

ARES 2017 (2017-08-29 - 2017-09-01), Reggio Calabria, Italy

Downloads counter

126

Abstract

Denial of Service (DoS) attacks are a major threat currently observable in omputer networks and especially the Internet. In such an attack a malicious party tries to either break a service, running on a server, or exhaust the capacity or bandwidth of the victim to hinder customers to effectively use the service. Recent reports show that the total number of Distributed Denial of Service (DDoS) attacks is steadily growing with “mega-attacks” peaking at hundreds of gigabit/s (Gbps).
In this paper, we will provide a quantification of DDoS attacks in size and duration beyond these outliers reported in the media. We find that these mega attacks do exist, but the bulk of attacks is in practice only a fraction of these frequently reported values. We further show that it is feasible to collect meaningful backscatter traces using surprisingly small telescopes, thereby enabling a broader audience to perform attack intelligence research.