Publication Details
Title: Temporal Lensing and its Application in Pulsing Denial-of-Service Attacks
Author: R. Rasti, M. Murthy, N. Weaver, and V. Paxson
Bibliographic Information: Proceedings of the 36th IEEE Symposium on Security and Privacy, San Jose, California
Date: May 2015
Research Area: Networking and Security
Type: Article in conference proceedings
PDF: [Not available online]
Overview:
We introduce temporal lensing: a technique that concentrates a relatively low-bandwidth flood into a short, high-bandwidth pulse. By leveraging existing DNS infrastructure, we experimentally explore lensing and the properties of the pulses it creates. We also empirically show how attackers can use lensing alone to achieve peak bandwidths more than an order of magnitude greater than their upload bandwidth. While formidable by itself in a pulsing DoS attack, attackers can also combine lensing with amplification to potentially produce pulses with peak bandwidths orders of magnitude larger than their own.
Acknowledgements:
This work was partially supported by funding provided to ICSI through National Science Foundation grant CNS : 1237265 (“Beyond Technical Security: Developing an Empirical Basis for Socio-Economic Perspectives”). Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors or originators and do not necessarily reflect the views of the National Science Foundation.
Bibliographic Reference:
R. Rasti, M. Murthy, N. Weaver, and V. Paxson. Temporal Lensing and its Application in Pulsing Denial-of-Service Attacks. Proceedings of the 36th IEEE Symposium on Security and Privacy, San Jose, California, May 2015
Author: R. Rasti, M. Murthy, N. Weaver, and V. Paxson
Bibliographic Information: Proceedings of the 36th IEEE Symposium on Security and Privacy, San Jose, California
Date: May 2015
Research Area: Networking and Security
Type: Article in conference proceedings
PDF: [Not available online]
Overview:
We introduce temporal lensing: a technique that concentrates a relatively low-bandwidth flood into a short, high-bandwidth pulse. By leveraging existing DNS infrastructure, we experimentally explore lensing and the properties of the pulses it creates. We also empirically show how attackers can use lensing alone to achieve peak bandwidths more than an order of magnitude greater than their upload bandwidth. While formidable by itself in a pulsing DoS attack, attackers can also combine lensing with amplification to potentially produce pulses with peak bandwidths orders of magnitude larger than their own.
Acknowledgements:
This work was partially supported by funding provided to ICSI through National Science Foundation grant CNS : 1237265 (“Beyond Technical Security: Developing an Empirical Basis for Socio-Economic Perspectives”). Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors or originators and do not necessarily reflect the views of the National Science Foundation.
Bibliographic Reference:
R. Rasti, M. Murthy, N. Weaver, and V. Paxson. Temporal Lensing and its Application in Pulsing Denial-of-Service Attacks. Proceedings of the 36th IEEE Symposium on Security and Privacy, San Jose, California, May 2015