Mitigating Distributed Denial of Service Attacks with Dynamic Resource Pricing

Abstract

Distributed Denial of Service (DDoS) attacks exploit the acute imbalance between client and server workloads to cause devastation to the service providers. We propose a distributed gateway architecture and a payment protocol that imposes dynamically changing prices on both network, server, and information resources in order to push some coat of initiating service requests - in terms of monetary payment a and/or computational burdens - back onto the requesting clients. By employing different price and purchase functions, the architecture can provide service quality differentiation and furthermore, select good client behavior and discriminate against adversarial behavior. If confirmed by additional experiments, judicious partitioning of resources using different pricing functions can improve overall service survivability.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Oct 01, 2001
Accession Number
ADA406438

Entities

People

  • Ceilyn Boyd
  • David Mankins
  • John Zao
  • Michael Frentz
  • Rajesh Krishnan

Organizations

  • BBN Technologies

Tags

DTIC Thesaurus Topics

  • Boundaries
  • Commerce
  • Computations
  • Computer Network Security
  • Computing System Architectures
  • Control Systems
  • Denial Of Service Attack
  • Floods
  • Information Operations
  • Lessons Learned
  • Money
  • Network Protocols
  • Operating Systems
  • Resource Management
  • Security
  • Throughput
  • Transport Protocols

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Government Contracting/Procurement.
  • Strategic Security Studies