skip to main content
10.1145/2592791.2592794acmconferencesArticle/Chapter ViewAbstractPublication PageseurosysConference Proceedingsconference-collections
research-article

On measuring the impact of DDoS botnets

Published: 13 April 2014 Publication History

Abstract

Miscreants use DDoS botnets to attack a victim via a large number of malware-infected hosts, combining the bandwidth of the individual PCs. Such botnets have thus a high potential to render targeted services unavailable. However, the actual impact of attacks by DDoS botnets has never been evaluated. In this paper, we monitor C&C servers of 14 DirtJumper and Yoddos botnets and record the DDoS targets of these networks. We then aim to evaluate the availability of the DDoS victims, using a variety of measurements such as TCP response times and analyzing the HTTP content. We show that more than 65% of the victims are severely affected by the DDoS attacks, while also a few DDoS attacks likely failed.

References

[1]
Arbor Networks. http://ddos.arbornetworks.com/.
[2]
A. Büscher and T. Holz. Tracking DDoS Attacks: Insights into the Business of Disrupting the Web. In Proceedings of the 5th USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), San Jose, CA, USA, April 2012.
[3]
J. Mirkovic and P. Reiher. A Taxonomy of DDoS Attack and DDoS Defense Mechanisms. In ACM SIGCOMM Computer Communication Review, volume 34, pages 39--53, April 2004.
[4]
C. Rossow, C. J. Dietrich, H. Bos, L. Cavallaro, M. van Steen, F. C. Freiling, and N. Pohlmann. Sandnet: Network Traffic Analysis of Malicious Software. In ACM EuroSys BADGERS, 2011.
[5]
S. M. Specht and R. B. Lee. Distributed Denial of Service: Taxonomies of Attacks, Tools, and Countermeasures. In Proceedings of the International Conference on Parallel and Distributed Computing (and Communications) Systems (ISCA PDCS), San Francisco, CA, September 2004.

Cited By

View all
  • (2024)Leveraging Prefix Structure to Detect Volumetric DDoS Attack Signatures with Programmable Switches2024 IEEE Symposium on Security and Privacy (SP)10.1109/SP54263.2024.00267(4535-4553)Online publication date: 19-May-2024
  • (2024)A Survey on Enterprise Network Security: Asset Behavioral Monitoring and Distributed Attack DetectionIEEE Access10.1109/ACCESS.2024.341906812(89363-89383)Online publication date: 2024
  • (2023)Comparative Study of DDoS Attacks & Tools and Their Analysis2023 International Conference on IoT, Communication and Automation Technology (ICICAT)10.1109/ICICAT57735.2023.10263744(1-8)Online publication date: 23-Jun-2023
  • Show More Cited By

Recommendations

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences
EuroSec '14: Proceedings of the Seventh European Workshop on System Security
April 2014
41 pages
ISBN:9781450327152
DOI:10.1145/2592791
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 13 April 2014

Permissions

Request permissions for this article.

Check for updates

Qualifiers

  • Research-article

Conference

EuroSys 2014
Sponsor:
EuroSys 2014: Ninth Eurosys Conference 2014
April 13, 2014
Amsterdam, The Netherlands

Acceptance Rates

EuroSec '14 Paper Acceptance Rate 6 of 14 submissions, 43%;
Overall Acceptance Rate 47 of 113 submissions, 42%

Upcoming Conference

EuroSys '25
Twentieth European Conference on Computer Systems
March 30 - April 3, 2025
Rotterdam , Netherlands

Contributors

Other Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

  • Downloads (Last 12 months)19
  • Downloads (Last 6 weeks)1
Reflects downloads up to 16 Feb 2025

Other Metrics

Citations

Cited By

View all
  • (2024)Leveraging Prefix Structure to Detect Volumetric DDoS Attack Signatures with Programmable Switches2024 IEEE Symposium on Security and Privacy (SP)10.1109/SP54263.2024.00267(4535-4553)Online publication date: 19-May-2024
  • (2024)A Survey on Enterprise Network Security: Asset Behavioral Monitoring and Distributed Attack DetectionIEEE Access10.1109/ACCESS.2024.341906812(89363-89383)Online publication date: 2024
  • (2023)Comparative Study of DDoS Attacks & Tools and Their Analysis2023 International Conference on IoT, Communication and Automation Technology (ICICAT)10.1109/ICICAT57735.2023.10263744(1-8)Online publication date: 23-Jun-2023
  • (2022)Amplification Chamber: Dissecting the Attack Infrastructure of Memcached DRDoS AttacksDetection of Intrusions and Malware, and Vulnerability Assessment10.1007/978-3-031-09484-2_10(178-196)Online publication date: 24-Jun-2022
  • (2021)MORTON: Detection of Malicious Routines in Large-Scale DNS TrafficComputer Security – ESORICS 202110.1007/978-3-030-88418-5_35(736-756)Online publication date: 30-Sep-2021
  • (2020)Replicated Testbed Experiments for the Evaluation of a Wide-range of DDoS Defenses2020 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)10.1109/EuroSPW51379.2020.00015(46-55)Online publication date: Sep-2020
  • (2019)Advanced Information Hiding Techniques for Modern BotnetsBotnets10.1201/9780429329913-4(165-188)Online publication date: 26-Sep-2019
  • (2019)Measuring the impact of a successful DDoS attack on the customer behaviour of managed DNS service providersACM SIGCOMM Computer Communication Review10.1145/3310165.331017548:5(70-76)Online publication date: 28-Jan-2019
  • (2019)On Security Threats of Botnets to Cyber Systems2019 6th International Conference on Signal Processing and Integrated Networks (SPIN)10.1109/SPIN.2019.8711780(176-183)Online publication date: Mar-2019
  • (2018)Measuring the Impact of a Successful DDoS Attack on the Customer Behaviour of Managed DNS Service ProvidersProceedings of the 2018 Workshop on Traffic Measurements for Cybersecurity10.1145/3229598.3229599(1-7)Online publication date: 7-Aug-2018
  • Show More Cited By

View Options

Login options

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Figures

Tables

Media

Share

Share

Share this Publication link

Share on social media