Advanced Search

Browse by Discipline

Scientific Societies

E-print Alerts

Add E-prints

E-print Network

  Advanced Search  

On the Effect of Router Buffer Sizes on Low-Rate Denial of Service Sandeep Sarat Andreas Terzis

Summary: On the Effect of Router Buffer Sizes on Low-Rate Denial of Service
Sandeep Sarat Andreas Terzis
sarat@cs.jhu.edu terzis@cs.jhu.edu
Johns Hopkins University
Router queues buffer packets during congestion epochs. A re-
cent result by Appenzeller et al. showed that the size of FIFO
queues can be reduced considerably without sacrificing utilization.
While Appenzeller showed that link utilization is not affected, the
impact of this reduction on other aspects of queue management
such as fairness, is unclear. Recently, a new class of low-rate
DoS attacks called shrews was shown to throttle TCP connections
by causing periodic packet drops. Unfortunately, smaller buffer
sizes make shrew attacks more effective and harder to detect since
shrews need to overflow a smaller buffer to cause drops.
In this paper, we investigate the relation between buffer size
and the shrew sending rate required to cause damage. Using a
simple mathematical model, we show that a relatively small in-
crease in the buffer size over the value proposed by Appenzeller


Source: Amir, Yair - Department of Computer Science, Johns Hopkins University


Collections: Computer Technologies and Information Sciences