English
Related papers

Related papers: Evaluating Susceptibility of VPN Implementations t…

200 papers

The SYN flood attack is a common attack strategy on the Internet, which tries to overload services with requests leading to a Denial-of-Service (DoS). Highly asymmetric costs for connection setup - putting the main burden on the attackee -…

Networking and Internet Architecture · Computer Science 2020-03-09 Dominik Scholz , Sebastian Gallenmüller , Henning Stubbe , Bassam Jaber , Minoo Rouhi , Georg Carle

In this work, we propose online traffic engineering as a novel approach to detect and mitigate an emerging class of stealthy Denial of Service (DoS) link-flooding attacks. Our approach exploits the Software Defined Networking (SDN)…

Networking and Internet Architecture · Computer Science 2014-12-08 Dimitrios Gkounis , Vasileios Kotronis , Xenofontas Dimitropoulos

Algorithmic complexity vulnerabilities are a class of security problems that enables attackers to trigger the worst-case complexity of certain algorithms. Such vulnerabilities can be leveraged to deploy low-volume, asymmetric, CPU-based…

Cryptography and Security · Computer Science 2022-11-22 Masudul Hasan Masud Bhuiyan , Cristian-Alexandru Staicu

Distributed Denial-of-Service (DDoS) attacks exhaust resources, leaving a server unavailable to legitimate clients. The Domain Name System (DNS) is a frequent target of DDoS attacks. Since DNS is a critical infrastructure service,…

Cryptography and Security · Computer Science 2022-09-16 A S M Rizvi , Jelena Mirkovic , John Heidemann , Wesley Hardaker , Robert Story

A distributed denial-of-service (DDoS) attack is an attack wherein multiple compromised computer systems flood the bandwidth and/or resources of a target, such as a server, website or other network resource, and cause a denial of service…

Cryptography and Security · Computer Science 2020-08-05 Rajat Tandon

Secure communication is an integral feature of many Internet services. The widely deployed TLS protects reliable transport protocols. DTLS extends TLS security services to protocols relying on plain UDP packet transport, such as VoIP or IoT…

Networking and Internet Architecture · Computer Science 2019-04-26 Sebastian Gallenmüller , Dominik Schöffmann , Dominik Scholz , Fabien Geyer , Georg Carle

Source Address Validation (SAV) is a standard aimed at discarding packets with spoofed source IP addresses. The absence of SAV for outgoing traffic has been known as a root cause of Distributed Denial-of-Service (DDoS) attacks and received…

Networking and Internet Architecture · Computer Science 2023-03-29 Yevheniya Nosyk , Maciej Korczyński , Qasim Lone , Marcin Skwarek , Baptiste Jonglez , Andrzej Duda

In this paper, we conduct an empirical study on remote DoS attacks targeting NAT networks. We show that Internet attackers operating outside local NAT networks can remotely identify a NAT device and subsequently terminate TCP connections…

Cryptography and Security · Computer Science 2024-11-26 Xuewei Feng , Yuxiang Yang , Qi Li , Xingxiang Zhan , Kun Sun , Ziqiang Wang , Ao Wang , Ganqiu Du , Ke Xu

Anonymous communication systems are subject to selective denial-of-service (DoS) attacks. Selective DoS attacks lower anonymity as they force paths to be rebuilt multiple times to ensure delivery which increases the opportunity for more…

Cryptography and Security · Computer Science 2015-03-19 Anupam Das , Nikita Borisov

Denial-of-Service (DoS) attacks are one of the most common and consequential cyber attacks in computer networks. While existing research offers a plethora of detection methods, the issue of achieving both scalability and high detection…

Cryptography and Security · Computer Science 2023-12-05 Omer Subasi , Joseph Manzano , Kevin Barker

The IoT is vulnerable to network attacks, and Intrusion Detection Systems (IDS) can provide high attack detection accuracy and are easily installed in IoT Servers. However, IDS are seldom evaluated in operational conditions which are…

Cryptography and Security · Computer Science 2024-01-31 Mohammed Nasereddin , Mert Nakıp , Erol Gelenbe

This study focuses on a method for detecting and classifying distributed denial of service (DDoS) attacks, such as SYN Flooding, ACK Flooding, HTTP Flooding, and UDP Flooding, using neural networks. Machine learning, particularly neural…

Cryptography and Security · Computer Science 2025-01-03 Dmytro Tymoshchuk , Oleh Yasniy , Mykola Mytnyk , Nataliya Zagorodna , Vitaliy Tymoshchuk

Software-defined networking (SDN) has become a fundamental technology for data centers and 5G networks. In an SDN network, routing and traffic management decisions are made by a centralized controller and communicated to switches via a…

Networking and Internet Architecture · Computer Science 2020-10-23 Michael Sjoholmsierchio , Britta Hale , Daniel Lukaszewski , Geoffrey G. Xie

Virtual Private Networks (VPNs) offer an alternative solution using Internet Protocol (IP) tunnels to create secure, encrypted communication between geographically distant networks using a common shared medium such as the Internet. They use…

Performance · Computer Science 2025-04-29 Michael J. Hall

One of the most critical components of the Internet that an attacker could exploit is the DNS (Domain Name System) protocol and infrastructure. Researchers have been constantly developing methods to detect and defend against the attacks…

Networking and Internet Architecture · Computer Science 2024-10-04 Abdullah Aydeger , Pei Zhou , Sanzida Hoque , Marco Carvalho , Engin Zeydan

Nowadays, denial of service (DoS) attacks represent a significant fraction of all attacks that take place in the Internet and their intensity is always growing. The main DoS attack methods consist of flooding their victims with bogus…

Networking and Internet Architecture · Computer Science 2017-01-04 Ricardo Paula Martins , José Legatheaux Martins , Henrique João Domingos

Denial of Service (DOS) attack is one of the most attack that attract the cyber criminals which aims to reduce the network performance from doing its intended functions. Moreover, DOS Attacks can cause a huge damage on the data…

Networking and Internet Architecture · Computer Science 2019-06-04 Yousef Khaled Shaheen , Mohammad Al Kasassbeh

Enterprise Networks are growing in scale and complexity, with heterogeneous connected assets needing to be secured in different ways. Nevertheless, virtually all connected assets use the Domain Name System (DNS) for address resolution, and…

Cryptography and Security · Computer Science 2022-05-19 Jawad Ahmed

A distributed denial-of-service (DDoS) attack is an attempt to produce humongous traffic within a network by overwhelming a targeted server or its neighboring infrastructure with a flood of service requests ceaselessly coming from multiple…

Cryptography and Security · Computer Science 2024-11-25 Mohammad Arafat Ullah , Arthy Anjum , Rashedul Amin Tuhin , Shamim Akhter

The purpose of this project is to assess how well defenders can detect DNS-over-HTTPS (DoH) file exfiltration, and which evasion strategies can be used by attackers. While providing a reproducible toolkit to generate, intercept and analyze…

Cryptography and Security · Computer Science 2025-12-24 Adam Elaoumari