See this document in CiteSeerX!

SOS: An Architecture For Mitigating DDoS Attacks (2004)  (Make Corrections)  (7 citations)
Angelos D. Keromytis, Vishal Misra, Dan Rubenstein



  Home/Search   Context   Related

 
View or download:
columbia.edu/~danr...Kero2004:SOS.ps.gz
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  columbia.edu/~danr/publ...publish (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: We propose an architecture called Secure Overlay Services (SOS) that proactively prevents DoS attacks, geared toward supporting Emergency Services or similar types of communication. The architecture uses a combination of secure overlay tunneling, routing via consistent hashing, and filtering. We reduce the probability of successful attacks by (i) performing intensive filtering near protected network edges, pushing the attack point perimeter into the core of the network, where high-speed routers ... (Update)

Cited by:   More
An Approach to Reliably Identifying Signs - Of Ddos Flood   (Correct)
Keeping Denial-of-Service Attackers in the Dark - Badishi, Herzberg, Keidar (2005)   (Correct)
gore: Routing-Assisted Defense against DDoS Attacks - Chou, Stavrou, Ioannidis..   (Correct)

Similar documents (at the sentence level):   More
62.2%:   SOS: An Architecture for Mitigating DDoS Attacks - Keromytis, Misra, Rubenstein (2003)   (Correct)
60.4%:   SOS: Secure Overlay Services - Keromytis, Misra, Rubenstein (2002)   (Correct)
8.1%:   Using Graphic Turing Tests to Counter Automated.. - Morein, Stavrou.. (2003)   (Correct)

Active bibliography (related documents):   More   All
0.2:   Trust Management for Widely Distributed Systems - Yao (2003)   (Correct)
0.1:   Using Overlays to Improve Network Security - Keromytis, Misra, Rubenstein (2002)   (Correct)
0.1:   WebSOS: An Overlay-based System for Protecting Web .. - Stavrou, Cook.. (2005)   (Correct)

Similar documents based on text:   More   All
0.4:   MOVE: An End-to-End Solution to Network Denial of Service - Stavrou, Keromytis.. (2005)   (Correct)
0.3:   The Effect of DNS Delays on Worm Propagation in an IPv6.. - Abhinav Kamra Hanhua (2005)   (Correct)

Related documents from co-citation:   More   All
5:   SOS: Secure Overlay Services - Keromytis, Misra et al. - 2002
4:   Implementing a Distributed Firewall - Ioannidis, Keromytis et al. - 2000
4:   WebSOS: Protecting Web Servers From DDoS Attacks - Cook, Morein et al. - 2003

BibTeX entry:   (Update)

A. D. Keromytis, V. Misra, and D. Rubenstein. SOS: An Architecture For Mitigating DDoS Attacks. IEEE Journal on Selected Areas of Communications (JSAC), 2003. (to appear). http://citeseer.ist.psu.edu/keromytis04sos.html   More

@misc{ keromytis03sos,
  author = "A. Keromytis and V. Misra and D. Rubenstein",
  title = "SOS: An Architecture For Mitigating DDoS Attacks",
  text = "A. D. Keromytis, V. Misra, and D. Rubenstein. SOS: An Architecture For
    Mitigating DDoS Attacks. IEEE Journal on Selected Areas of Communications
    (JSAC), 2003. (to appear).",
  year = "2003",
  url = "citeseer.ist.psu.edu/keromytis04sos.html" }
Citations (may not include all citations):
1225   Chord: A Scalable Peer-To-Peer Lookup Service for Internet A.. - Stoica, Morris et al. - 2001
1023   A Scalable Content-Addressable Network - Ratnasamy, Francis et al. - 2001
423   End-to-end arguments in System Design - Saltzer, Reed et al. - 1984
342   WideArea Cooperative Storage with CFS - Dabek, Kaashoek et al. - 2001
307   Resilient Overlay Networks - Andersen, Balakrishnan et al. - 2001
206   Consistent Hashing and Random Trees: Distributed Caching Pro.. - Karger, Lehman et al. - 1997
154   A Blueprint for Introducing Disruptive Technology into the I.. - Peterson, Culler et al. - 2002
121   Multiservice Loss Models for Broadband Telecommunication Net.. (context) - Ross - 1995
98   SOS: Secure Overlay Services - Keromytis, Misra et al. - 2002
84   Crowds: anonymity for Web transactions - Reiter, Rubin - 1998
84   TCP Congestion Control with a Misbehaving Receiver - Savage, Cardwell et al. - 1999
78   Analysis of a Denial of Service Attack on TCP - Schuba, Krsul et al. - 1997
72   An Algebraic Approach to IP Traceback - Dean, Franklin et al. - 2001
70   Anonymous connections and onion routing - Reed, Syverson et al. - 1998
59   Implementing a Distributed Firewall - Ioannidis, Keromytis et al. - 2000
57   Implementing Pushback: Router-Based Defense Against DDoS Att.. - Ioannidis, Bellovin - 2002
55   the Effectiveness of Route-Based Packet Filtering for Distri.. - Park, Lee - 2001
53   Wiley-Interscience (context) - Kleinrock, Systems et al. - 1975
35   Security Considerations for Peer-to-Peer Distributed Hash Ta.. - Sit, Morris - 2002
33   An Analysis of the Degradation of Anonymous Protocols - Wright, Adler et al. - 2001
24   Attack Class: Address Spoofing (context) - Heberlein, Bishop - 1996
18   Network Support for IP Traceback (context) - Savage, Wetherall et al. - 2001
10   Inferring Internet Denial-ofService Activity (context) - Moore, Voelker et al. - 2001
10   Trust Management for IPsec - Blaze, Ioannidis et al. - 2001
4   Efficient Packet Marking forLArg-Scale IP Traceback (context) - Goodrich - 2002

Documents on the same site (http://www1.cs.columbia.edu/~danr/publish/publish.html):   More
A Graph Theoretic Approach to Bounding Delay in.. - Malouch, Liu.. (2002)   (Correct)
A Greedy Approach to Replicated Content Placement Using Graph .. - Ko, Rubenstein (2002)   (Correct)
Improving Reliable Multicast Using Active Parity.. - Rubenstein.. (2004)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC