Denial of Service: Prevention, Modelling and Detection
Abstract
This research investigates the denial of service problem, in the context of services provided over a network, and contributes to improved techniques for modelling, detecting, and preventing denial of service attacks against these services.
While the majority of currently employed denial of service attacks aim to pre-emptively consume the network bandwidth of victims, a significant amount of research effort is already being directed at this problem. This research is instead concerned with addressing the inevitable migration of denial of service attacks up the protocol stack to the application layer. Of particular interest is the denial of service resistance of key establishment protocols (security protocols that enable an initiator and responder to mutually authenticate and establish cryptographic keys for establishing a secure communications channel), which owing to the computationally intensive activities they perform, are particularly vulnerable to attack.
Address
Brisbane, QLD 4001 Australia
Key alpha
Denial of service resistance, key establishment, attack prevention, specification-based intrusion detection, security modelling, cost-based modelling, mobile IP, IEEE 802.11 wireless networks, crypto-based identifiers.
School
Queensland University of Technology
Publication Date
2007-06-01
Contents
1. Introduction
2. Background
3. Denial of Service Resistant Key Establishment
4. Modelling Denial of Service Resistance
5. Denial of Service in Mobile IP Binding Update Protocols
6. Denial of Service in IEEE 802.11 Wireless Networks
7. Specification-based IEEE 802.11 Attack Detection
8. Conclusions and Future Work
Subject
IEEE 802.11 Security