A Client Bootstrapping Protocol for DoS Attack Mitigation on Entry Point Services in the Cloud
Joint Authors
Almohri, Hussain M. J.
Almutawa, Mohammad
Alawadh, Mahmoud
Elish, Karim
Source
Security and Communication Networks
Issue
Vol. 2020, Issue 2020 (31 Dec. 2020), pp.1-12, 12 p.
Publisher
Hindawi Publishing Corporation
Publication Date
2020-07-23
Country of Publication
Egypt
No. of Pages
12
Main Subjects
Information Technology and Computer Science
Abstract EN
This paper presents a client bootstrapping protocol for proxy-based moving target defense system for the cloud.
The protocol establishes the identity of prospective clients who intend to connect to web services behind obscure proxy servers in a cloud-based network.
In client bootstrapping, a set of initial line of defense services receive new client requests, execute an algorithm to assign them to a proxy server, and reply back with the address of the chosen proxy server.
The bootstrapping protocol only reveals one proxy address to each client, maintaining the obscurity of the addresses for other proxy servers.
Hiding the addresses of proxy servers aims to lower the likelihood that a proxy server becomes the victim of a denial-of-service (DoS) attack.
Existing works address this problem by requiring the solution of computationally intensive puzzles from prospective clients.
This solution slows the progression of attacks as well as new clients.
This paper presents an alternative idea by observing that limited capacity of handling initial network requests is the primary cause of denial-of-service attacks.
Thus, the suggested alternative is to utilize cost-effective high-capacity networks to handle client bootstrapping, thus thwarting attacks on the initial line of defense.
The prototype implementation of the protocol using Google’s firebase demonstrates the proof of concept for web services that receive network requests from clients on mobile devices.
American Psychological Association (APA)
Almohri, Hussain M. J.& Almutawa, Mohammad& Alawadh, Mahmoud& Elish, Karim. 2020. A Client Bootstrapping Protocol for DoS Attack Mitigation on Entry Point Services in the Cloud. Security and Communication Networks،Vol. 2020, no. 2020, pp.1-12.
https://search.emarefa.net/detail/BIM-1208828
Modern Language Association (MLA)
Almohri, Hussain M. J.…[et al.]. A Client Bootstrapping Protocol for DoS Attack Mitigation on Entry Point Services in the Cloud. Security and Communication Networks No. 2020 (2020), pp.1-12.
https://search.emarefa.net/detail/BIM-1208828
American Medical Association (AMA)
Almohri, Hussain M. J.& Almutawa, Mohammad& Alawadh, Mahmoud& Elish, Karim. A Client Bootstrapping Protocol for DoS Attack Mitigation on Entry Point Services in the Cloud. Security and Communication Networks. 2020. Vol. 2020, no. 2020, pp.1-12.
https://search.emarefa.net/detail/BIM-1208828
Data Type
Journal Articles
Language
English
Notes
Includes bibliographical references
Record ID
BIM-1208828