期刊名称:International Journal of Computer Science and Network Security
印刷版ISSN:1738-7906
出版年度:2013
卷号:13
期号:4
页码:29-34
出版社:International Journal of Computer Science and Network Security
摘要:Distribute denial of service (DDoS) attacks can inflict chaos on any susceptible web site. The goal of these attacks is to consume the network bandwidth and reject services to legitimate users of the targeted systems. Hence the client loyalty and buoyancy can be eroded due to annoyance of slow site performance .The attacks at the layer-7 are more harder to alleviate since they deny the service without causing the consumption of available network bandwidth when compared to network layer DDoS attacks. Several mechanisms has been introduce to alleviate application layer DDoS attacks in which the attackers are identified and blocked after reaching the server. Our proposed system has incorporated a module called data specification module in which the attackers are chunked in the client side itself. This can be done by computing the trust of a client based on the threshold value by considering the parameters such as OS name, port number, IP address and Mac address. Thus only the legitimate users can be allowed to send requests and access the service. Thus an attacker can be eliminated in the client side thereby reducing the bandwidth overhead in the server and only the legitimate user is given priority to access the services.
关键词:Distributed Denial of Service (DDoS) attacks; Reacting module; Trust; Trust Management Helmet
