Mitigation of Random Query String DoS via Gossip
Stefano Ferretti, Vittorio Ghini
TL;DR
This paper proposes a gossip-based mitigation scheme for random query string DoS attacks on CDNs, enabling edge servers to detect and respond to attack patterns to protect origin servers.
Contribution
Introduces a novel gossip protocol for edge servers to detect and mitigate random query string DoS attacks in CDNs.
Findings
Simulation results confirm the effectiveness of the gossip-based detection.
The approach reduces attack impact on origin servers.
The scheme is scalable and adaptable to different CDN configurations.
Abstract
This paper presents a mitigation scheme to cope with the random query string Denial of Service (DoS) attack, which is based on a vulnerability of current Content Delivery Networks (CDNs). The attack exploits the fact that edge servers composing a CDN, receiving an HTTP request for a resource with an appended random query string never saw before, ask the origin server for a (novel) copy of the resource. Such characteristics can be employed to take an attack against the origin server by exploiting edge servers. Our strategy adopts a simple gossip protocol executed by edge servers to detect the attack. Based on such a detection, countermeasures can be taken to protect the origin server and the CDN against the attack. We provide simulation results that show the viability of our approach.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsPeer-to-Peer Network Technologies · Caching and Content Delivery · Opportunistic and Delay-Tolerant Networks