research-article

On measuring the impact of DDoS botnets

Authors:
Arne Welzel

VU University Amsterdam, The Netherlands

VU University Amsterdam, The Netherlands
View Profile

,
Christian Rossow

VU University Amsterdam, The Netherlands

VU University Amsterdam, The Netherlands
View Profile

,
Herbert Bos

VU University Amsterdam, The Netherlands

VU University Amsterdam, The Netherlands
View Profile

EuroSec '14: Proceedings of the Seventh European Workshop on System SecurityApril 2014Article No.: 3Pages 1–6https://doi.org/10.1145/2592791.2592794

Published:13 April 2014Publication History

EuroSec '14: Proceedings of the Seventh European Workshop on System Security

Pages 1–6

ABSTRACT

Miscreants use DDoS botnets to attack a victim via a large number of malware-infected hosts, combining the bandwidth of the individual PCs. Such botnets have thus a high potential to render targeted services unavailable. However, the actual impact of attacks by DDoS botnets has never been evaluated. In this paper, we monitor C&C servers of 14 DirtJumper and Yoddos botnets and record the DDoS targets of these networks. We then aim to evaluate the availability of the DDoS victims, using a variety of measurements such as TCP response times and analyzing the HTTP content. We show that more than 65% of the victims are severely affected by the DDoS attacks, while also a few DDoS attacks likely failed.

References

Arbor Networks. http://ddos.arbornetworks.com/.Google Scholar
A. Büscher and T. Holz. Tracking DDoS Attacks: Insights into the Business of Disrupting the Web. In Proceedings of the 5th USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), San Jose, CA, USA, April 2012. Google ScholarDigital Library
J. Mirkovic and P. Reiher. A Taxonomy of DDoS Attack and DDoS Defense Mechanisms. In ACM SIGCOMM Computer Communication Review, volume 34, pages 39--53, April 2004. Google ScholarDigital Library
C. Rossow, C. J. Dietrich, H. Bos, L. Cavallaro, M. van Steen, F. C. Freiling, and N. Pohlmann. Sandnet: Network Traffic Analysis of Malicious Software. In ACM EuroSys BADGERS, 2011. Google ScholarDigital Library
S. M. Specht and R. B. Lee. Distributed Denial of Service: Taxonomies of Attacks, Tools, and Countermeasures. In Proceedings of the International Conference on Parallel and Distributed Computing (and Communications) Systems (ISCA PDCS), San Francisco, CA, September 2004.Google Scholar

Index Terms

On measuring the impact of DDoS botnets

Recommendations

Measuring the impact of a successful DDoS attack on the customer behaviour of managed DNS service providers

Distributed Denial-of-Service (DDoS) attacks continue to pose a serious threat to the availability of Internet services. The Domain Name System (DNS) is part of the core of the Internet and a crucial factor in the successful delivery of Internet ...
Read More
Delving Into Internet DDoS Attacks by Botnets: Characterization and Analysis

Internet distributed denial of service DDoS attacks are prevalent but hard to defend against, partially due to the volatility of the attacking methods and patterns used by attackers. Understanding the latest DDoS attacks can provide new insights for ...
Read More
Delving into Internet DDoS Attacks by Botnets: Characterization and Analysis
DSN '15: Proceedings of the 2015 45th Annual IEEE/IFIP International Conference on Dependable Systems and Networks

Internet Distributed Denial of Service (DDoS) at- tacks are prevalent but hard to defend against, partially due to the volatility of the attacking methods and patterns used by attackers. Understanding the latest DDoS attacks can provide new insights for ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
EuroSec '14: Proceedings of the Seventh European Workshop on System Security
April 2014
41 pages
ISBN:9781450327152
DOI:10.1145/2592791
Program Chairs:
Davide Balzarotti
EURECOM
,
Juan Caballero
IMDEA Software Institute
Copyright © 2014 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 13 April 2014
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Qualifiers
- research-article
Conference

Acceptance Rates
EuroSec '14 Paper Acceptance Rate6of14submissions,43%Overall Acceptance Rate47of113submissions,42%
More
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 21
  Total Citations
  View Citations
- 490
  Total Downloads
- Downloads (Last 12 months)41
- Downloads (Last 6 weeks)0
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

On measuring the impact of DDoS botnets

EuroSec '14: Proceedings of the Seventh European Workshop on System Security

ABSTRACT

References

Cited By

Index Terms

Recommendations

Measuring the impact of a successful DDoS attack on the customer behaviour of managed DNS service providers

Delving Into Internet DDoS Attacks by Botnets: Characterization and Analysis

Delving into Internet DDoS Attacks by Botnets: Characterization and Analysis

Comments

Login options

Full Access

Published in

Sponsors

In-Cooperation

Publisher

Publication History

Permissions

Check for updates

Qualifiers

Conference

Acceptance Rates

Funding Sources

Other Metrics

Article Metrics

Other Metrics

Cited By

PDF Format

eReader

Digital Edition

Caption

On measuring the impact of DDoS botnets

EuroSec '14: Proceedings of the Seventh European Workshop on System Security

ABSTRACT

References

Cited By

Index Terms

Recommendations

Measuring the impact of a successful DDoS attack on the customer behaviour of managed DNS service providers

Delving Into Internet DDoS Attacks by Botnets: Characterization and Analysis

Delving into Internet DDoS Attacks by Botnets: Characterization and Analysis

Comments

Login options

Full Access

Published in

Sponsors

In-Cooperation

Publisher

Publication History

Permissions

Check for updates

Qualifiers

Conference

Acceptance Rates

Funding Sources

Article Metrics

Other Metrics

PDF Format

eReader

Digital Edition

Share this Publication link

Share on Social Media