Home

About

Advanced Search

Browse by Discipline

Scientific Societies

E-print Alerts

Add E-prints

E-print Network
FAQHELPSITE MAPCONTACT US


  Advanced Search  

 
On the Effect of Router Buffer Sizes on Low-Rate Denial of Service Sandeep Sarat Andreas Terzis
 

Summary: On the Effect of Router Buffer Sizes on Low-Rate Denial of Service
Attacks
Sandeep Sarat Andreas Terzis
sarat@cs.jhu.edu terzis@cs.jhu.edu
Johns Hopkins University
Abstract
Router queues buffer packets during congestion epochs. A re-
cent result by Appenzeller et al. showed that the size of FIFO
queues can be reduced considerably without sacrificing utilization.
While Appenzeller showed that link utilization is not affected, the
impact of this reduction on other aspects of queue management
such as fairness, is unclear. Recently, a new class of low-rate
DoS attacks called shrews was shown to throttle TCP connections
by causing periodic packet drops. Unfortunately, smaller buffer
sizes make shrew attacks more effective and harder to detect since
shrews need to overflow a smaller buffer to cause drops.
In this paper, we investigate the relation between buffer size
and the shrew sending rate required to cause damage. Using a
simple mathematical model, we show that a relatively small in-
crease in the buffer size over the value proposed by Appenzeller

  

Source: Amir, Yair - Department of Computer Science, Johns Hopkins University

 

Collections: Computer Technologies and Information Sciences