SDN-Assisted Network-Based Mitigation of Slow HTTP Attacks
Lukaseder T, Maile L, Kargl F (2017)
Publication Language: English
Publication Type: Conference contribution, Conference Contribution
Publication year: 2017
Publisher: Universität Tübingen
Conference Proceedings Title: KuVS Fachgespräch "Network Softwarization" - From Research to Application
DOI: 10.15496/publikation-19543
Open Access Link: http://dx.doi.org/10.15496/publikation-19543
Abstract
Slow HTTP attacks are hard to detect as the
attackers behave according to the specification. The default
configuration of most servers leaves them vulnerable to this
attack. Meanwhile, the pressure to secure the attack targets shifts
more and more to the network operators. Often without direct
access to the target, the operators are asked to secure their clients.
Software-defined networking (SDN) offers the flexibility and
extensibility to analyze and influence network flows without help
of the target operator. In previous work, we designed and built
a framework based on software-defined networking and the Bro
Network Security Monitor that can mitigate attacks within the
network infrastructure without access to the attack target. The
initial framework can reliably mitigate different flooding attacks.
The presented project discusses strategies to add mitigation of
slow HTTP attacks to this framework.
Authors with CRIS profile
Related research project(s)
Involved external institutions
Germany (DE)How to cite
APA:
Lukaseder, T., Maile, L., & Kargl, F. (2017). SDN-Assisted Network-Based Mitigation of Slow HTTP Attacks. In KuVS Fachgespräch "Network Softwarization" - From Research to Application. Universität Tübingen.
MLA:
Lukaseder, Thomas, Lisa Maile, and Frank Kargl. "SDN-Assisted Network-Based Mitigation of Slow HTTP Attacks." Proceedings of the KuVS Fachgespräch "Network Softwarization" - From Research to Application Universität Tübingen, 2017.
BibTeX: Download