Hypertext transfer protocol performance analysis in traditional and software defined networks during Slowloris attack
Uloženo v:
| Název: | Hypertext transfer protocol performance analysis in traditional and software defined networks during Slowloris attack |
|---|---|
| Autoři: | Anusha A. Murthy, Prathima Mabel John, Rama Mohan Babu Kasturi Nagappasetty |
| Informace o vydavateli: | Zenodo |
| Rok vydání: | 2023 |
| Sbírka: | Zenodo |
| Témata: | Apache benchmark tool, H2load benchmark tool, HTTP/2, Monte Carlo model, Slowloris, Software defined network |
| Popis: | The extensive use of the internet has resulted in novel technologies and protocol improvisation. Hypertext transfer protocol/1.1 (HTTP/1.1) is widely adapted on the internet. However, HTTP/2 is found to be more efficient over transport control protocol (TCP). The HTTP/2 protocol can withstand the payload overhead when compared to HTTP/1.1 by multiplexing multiple requests. However, both the protocols are highly susceptible to applicationlevel denial of service (DoS) attacks. In this research, a slow-rate DoS attack called Slowloris is detected over Apache2 servers enabled with both versions of HTTP in traditional networks and software defined networks (SDN). Server metrics such as server connection time to the webpage, latency in receiving a response from the server, page load time, response-response gap, and inter-packet arrival time at the server are monitored to analyze attack activity. A Monte Carlo simulation is used to estimate threshold values for server connection time and latency for attack detection. This work is implemented in a lab environment using virtual machines, Ryu controller, zodiac FX OpenFlow switch and Apache2 servers. This study also highlights SDN's security benefits over traditional networks. |
| Druh dokumentu: | article in journal/newspaper |
| Jazyk: | unknown |
| Relation: | https://zenodo.org/records/8238295; oai:zenodo.org:8238295 |
| DOI: | 10.11591/ijece.v13i4.pp4268-4279 |
| Dostupnost: | https://doi.org/10.11591/ijece.v13i4.pp4268-4279 https://zenodo.org/records/8238295 |
| Rights: | Creative Commons Attribution 4.0 International ; cc-by-4.0 ; https://creativecommons.org/licenses/by/4.0/legalcode |
| Přístupové číslo: | edsbas.2EAB26EE |
| Databáze: | BASE |
Nájsť tento článok vo Web of Science | Abstrakt: | The extensive use of the internet has resulted in novel technologies and protocol improvisation. Hypertext transfer protocol/1.1 (HTTP/1.1) is widely adapted on the internet. However, HTTP/2 is found to be more efficient over transport control protocol (TCP). The HTTP/2 protocol can withstand the payload overhead when compared to HTTP/1.1 by multiplexing multiple requests. However, both the protocols are highly susceptible to applicationlevel denial of service (DoS) attacks. In this research, a slow-rate DoS attack called Slowloris is detected over Apache2 servers enabled with both versions of HTTP in traditional networks and software defined networks (SDN). Server metrics such as server connection time to the webpage, latency in receiving a response from the server, page load time, response-response gap, and inter-packet arrival time at the server are monitored to analyze attack activity. A Monte Carlo simulation is used to estimate threshold values for server connection time and latency for attack detection. This work is implemented in a lab environment using virtual machines, Ryu controller, zodiac FX OpenFlow switch and Apache2 servers. This study also highlights SDN's security benefits over traditional networks. |
|---|---|
| DOI: | 10.11591/ijece.v13i4.pp4268-4279 |