SDN-Assisted Network-Based Mitigation of Slow HTTP Attacks

Lukaseder T, Maile L, Kargl F (2017)


Publication Language: English

Publication Type: Conference contribution, Conference Contribution

Publication year: 2017

Publisher: Universität Tübingen

Conference Proceedings Title: KuVS Fachgespräch "Network Softwarization" - From Research to Application

DOI: 10.15496/publikation-19543

Open Access Link: http://dx.doi.org/10.15496/publikation-19543

Abstract

Slow HTTP attacks are hard to detect as the
attackers behave according to the specification. The default
configuration of most servers leaves them vulnerable to this
attack. Meanwhile, the pressure to secure the attack targets shifts
more and more to the network operators. Often without direct
access to the target, the operators are asked to secure their clients.
Software-defined networking (SDN) offers the flexibility and
extensibility to analyze and influence network flows without help
of the target operator. In previous work, we designed and built
a framework based on software-defined networking and the Bro
Network Security Monitor that can mitigate attacks within the
network infrastructure without access to the attack target. The
initial framework can reliably mitigate different flooding attacks.
The presented project discusses strategies to add mitigation of
slow HTTP attacks to this framework.

Authors with CRIS profile

Related research project(s)

Involved external institutions

How to cite

APA:

Lukaseder, T., Maile, L., & Kargl, F. (2017). SDN-Assisted Network-Based Mitigation of Slow HTTP Attacks. In KuVS Fachgespräch "Network Softwarization" - From Research to Application. Universität Tübingen.

MLA:

Lukaseder, Thomas, Lisa Maile, and Frank Kargl. "SDN-Assisted Network-Based Mitigation of Slow HTTP Attacks." Proceedings of the KuVS Fachgespräch "Network Softwarization" - From Research to Application Universität Tübingen, 2017.

BibTeX: Download