Results - Details
Search command : Author="Αθανασόπουλος"
And Author="Ηλίας"
Current Record: 7 of 7
|
|
| Identifier |
uch.csd.msc//2007athanasopoulos |
| Title |
Χρησιμοποιώντας μη Δομημένα Διομότιμα Συστήματα ως Πλατφόρμες για Επιθέσεις Εξάντλησης Πόρων |
| Alternative Title |
Using Unstructured Peer-to-Peer Systems as Denial of Service Attack Platforms |
| Creator |
Athanasopoulos, Elias
|
| Abstract |
In the last seven years we have faced the explosion of a new communication paradigm: the Peer-to-Peer (P2P) one. Unlike classic Client-Server infrastructures, in which most well-known distributed systems are build, such as the World Wide Web or the Electronic Mail (e-mail), the P2P model introduces the meaning of equal responsible computer entities, which transfer communication by delegating it to other computer entities. P2P systems have gained success to applications that focus in the exchange of files between individual users. There are active file sharing systems nowadays that concurrently host millions of users. One fundamental property of these systems is the lack of structure, which allows decentralized operation and makes it easy for new users to join and participate in the system. However, the lack of structure can also be abused by malicious users. We explore one such attack, that enables malicious users to use unstructured P2P systems to perform Denial of Service (DoS) attacks to third parties. Specifically, we show that a malicious node can coerce a large number of peers to perform requests to a target host that may not even be part of the P2P network, including downloading unwanted files from a target Web Server. This is a classic form of denial-of-service which also has two interesting characteristics: (a) it is hard to identify the originator of the attack, (b) it is even harder to stop the attack. The second property comes from the fact that certain unstructured P2P systems seem to have a kind of ``memory'', retaining knowledge about (potentially false) queries for many days. In this thesis we present real-world experiments of Gnutella-based DoS attacks to Web Servers. We explore the magnitude of the problem and present a solution to protect innocent victims against this attack.
|
| Issue date |
2007-05-01 |
| Date available |
2007-10-11 |
| Collection
|
School/Department--School of Sciences and Engineering--Department of Computer Science--Post-graduate theses
|
|
|
Type of Work--Post-graduate theses
|
| Permanent Link |
https://elocus.lib.uoc.gr//dlib/d/5/d/metadata-dlib-2007athanasopoulos.tkl
|
| Views |
423 |
Search
