본문 바로가기
  • Home

One-time Session Key based HTTP DDoS Defense Mechanisms

  • Journal of The Korea Society of Computer and Information
  • Abbr : JKSCI
  • 2013, 18(8), pp.95-104
  • Publisher : The Korean Society Of Computer And Information
  • Research Area : Engineering > Computer Science

최상용 1 강익선 2 Yong-min Kim 3

1한국과학기술원 사이버보안연구센터
2한국과학기술원 사이어보안연구센터
3전남대학교

Accredited

ABSTRACT

DDoS attacks have became as a social threat since 2009 7.7 DDoS turmoil. Even though defence techniques have been developing to provide against those threats, they become much more sophisticate. In recent years, the attack form of DDoS is changing from high amount of traffic attack of network layers to highly sophisticate small amount of application layers. To make matters worse, attack agent for the attack has became very intelligent so that it is difficult to be blocked since it can’t be distinguished from normal PCs. In the user authentication system(such as CAPTCHA) User intervention is required to distinguish normal PCs and intelligent attack agents and in particular, in a NAT environment, IP-based blocking method can be cut off the normal users traffic at the same time. This research examined defense techniques which are able to distinguish between agent and normal PC and effectively block ways the HTTP DDoS offense applying one-time session key based authentication method using Cookie which is used in HTTP protocol to protect web sever from sophisticate application layer of DDoS.

Citation status

* References for papers published after 2022 are currently being built.