• Documents
  • Authors
  • Tables
  • Other Seers ▼
    RefSeer AckSeer CollabSeer SeerSeer
  • Log in
  • Sign up
  • MetaCart

CiteSeerX logo

Advanced Search Include Citations
Advanced Search Include Citations | Disambiguate

SOS: Secure overlay services (2002)

Cached

  • Download as a PDF

Download Links

  • [www.cs.utexas.edu]
  • [www.cs.utexas.edu]
  • [www.cs.columbia.edu]
  • [www.cs.columbia.edu]
  • [www1.cs.columbia.edu]
  • [cs.baylor.edu]
  • [utdallas.edu]
  • [www.sigcomm.org]
  • [www.utdallas.edu]
  • [www.acm.org]
  • [www.utdallas.edu]
  • [www.acm.org]
  • [nms.lcs.mit.edu]
  • [nsl.cs.columbia.edu]
  • [www.ee.columbia.edu]
  • [www.csd.uoc.gr]

    • Other Repositories/Bibliography

  • DBLP
  • Save to List
  • Add to Collection
  • Correct Errors
  • Monitor Changes
by Angelos D. Keromytis , Vishal Misra , Dan Rubenstein
Venue:In Proceedings of ACM SIGCOMM
Citations:180 - 14 self
  • Summary
  • Active Bibliography
  • Co-citation
  • Clustered Documents
  • Version History

Versions

  • Version 0
  • Version 1

Version History

Metadata Version 1

DatumValueSource
TITLE SOS: Secure overlay services INFERENCE
AUTHOR NAME Angelos D. Keromytis SVM HeaderParse 0.2
AUTHOR AFFIL Department of Computer Science Department of Electrical Engineering; Columbia University SVM HeaderParse 0.2
AUTHOR ADDR New ¤ York, NY SVM HeaderParse 0.2
AUTHOR NAME Vishal Misra SVM HeaderParse 0.2
AUTHOR AFFIL Department of Computer Science Department of Electrical Engineering; Columbia University SVM HeaderParse 0.2
AUTHOR ADDR New ¤ York, NY SVM HeaderParse 0.2
AUTHOR NAME Dan Rubenstein SVM HeaderParse 0.2
AUTHOR AFFIL Department of Computer Science Department of Electrical Engineering; Columbia University SVM HeaderParse 0.2
AUTHOR ADDR New ¤ York, NY SVM HeaderParse 0.2
ABSTRACT angelos,misra,danr¥ Denial of service (DoS) attacks continue to threaten the reliability of networking systems. Previous approaches for protecting networks from DoS attacks are reactive in that they wait for an attack to be launched before taking appropriate measures to protect the network. This leaves the door open for other attacks that use more sophisticated methods to mask their traffic. We propose an architecture called Secure Overlay Services (SOS) that proactively prevents DoS attacks, geared toward supporting Emergency Services or similar types of communication. The architecture is constructed using a combination of secure overlay tunneling, routing via consistent hashing, and filtering. We reduce the probability of successful attacks by (i) performing intensive filtering near protected network edges, pushing the attack point perimeter into the core of the network, where high-speed routers can handle the volume of attack traffic, and (ii) introducing randomness and anonymity into the architecture, making it difficult for an attacker to target nodes along the path to a specific SOS-protected destination. Using simple analytical models, we evaluate the likelihood that an attacker can successfully launch a DoS attack against an SOSprotected network. Our analysis demonstrates that such an architecture reduces the likelihood of a successful attack to minuscule levels. SVM HeaderParse 0.2
YEAR 2002 INFERENCE
VENUE In Proceedings of ACM SIGCOMM INFERENCE
VENUE TYPE CONFERENCE INFERENCE
PAGES 61--72 INFERENCE
CITATIONS 26 found ParsCit 1.0
The National Science Foundation
  • About CiteSeerX
  • Submit Documents
  • Privacy Policy
  • Help
  • Data
  • Source
  • Contact Us

Developed at and hosted by The College of Information Sciences and Technology

© 2007-2010 The Pennsylvania State University