Abstract

Denial of service attacks are an increasing threat to the Internet’s availability and reliability. To evaluate a variety of defenses proposed against this threat we must be able to precisely measure impact of an ongoing attack on a network. The effectiveness of a defense can then be calculated with regard to how quickly and how completely it eliminates this DoS impact. We propose a DoS impact measure which divides legitimate traffic in the network into higher-level user tasks, called transactions, and classifies these transactions into application-level categories. For each category, we define quality-of-service requirements that have to be met for a satisfactory service. DoS impact is then measured as a percentage of transactions in each category that have not met their QoS requirements.

Date

January 1, 1970

Authors

Jelena Mirkovic, Sonia Fahmy, Peter Reiher, Roshan Thomas, Alefiya Hussain, Steven Schwab, Calvin Ko

Journal

Proceedings of the DETER Community Workshop on Cyber Security Experimentation