HTTP/2 Cannon: Experimental analysis on HTTP/1 and HTTP/2 Request Flood DDoS Attacks

被引:0
|
作者
Beckett, David [1 ]
Sezer, Sakir [1 ]
机构
[1] Queens Univ Belfast, CSIT, Belfast, Antrim, North Ireland
来源
2017 SEVENTH INTERNATIONAL CONFERENCE ON EMERGING SECURITY TECHNOLOGIES (EST) | 2017年
关键词
DDoS; HTTP2; Flood; Attack; Apache; nghttp2; Nginx; Vulnerabilities;
D O I
暂无
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Distributed Denial of Service (DDoS) attacks are a frequent cyber attack vector which cause significant damage to computer systems. Hypertext Transfer Protocol (HTTP), which is the core communication protocol of the internet, has had a major upgrade and is released as RFC 7540. This latest version, HTTP/2, has begun to be deployed in live systems before comprehensive security studies have been carried out on its risk from DDoS. In this piece of research we explore using experimental methodology, the DDoS risk posed by the upgraded functionality of the HTTP/2 protocol, in particular its risk from a flood attack. Our results show that a website implementing HTTP/2, scales up the flood attack magnitude, increasing the risk from DDoS.
引用
收藏
页码:107 / 112
页数:6
相关论文
共 50 条
  • [1] HTTP/2 Tsunami: Investigating HTTP/2 Proxy Amplification DDoS Attacks
    Beckett, David
    Sezer, Sakir
    2017 SEVENTH INTERNATIONAL CONFERENCE ON EMERGING SECURITY TECHNOLOGIES (EST), 2017, : 127 - 132
  • [2] Fuzzy Request Set Modelling for Detecting Multiplexed Asymmetric DDoS Attacks on HTTP/2 servers
    Praseed, Amit
    Thilagam, P. Santhi
    EXPERT SYSTEMS WITH APPLICATIONS, 2021, 186
  • [3] Recent Analysis of Forged Request Headers Constituted by HTTP DDoS
    Jaafar, Abdul Ghafar
    Ismail, Saiful Adli
    Abdullah, Mohd Shahidan
    Kama, Nazri
    Azmi, Azri
    Yusop, Othman Mohd
    SENSORS, 2020, 20 (14) : 1 - 29
  • [4] An Experimental View on Fairness between HTTP/1.1 and HTTP/2
    Min, Jiwon
    Lee, Youngseok
    33RD INTERNATIONAL CONFERENCE ON INFORMATION NETWORKING (ICOIN 2019), 2019, : 399 - 401
  • [5] Detection of HTTP DDoS Attacks Using NFStream and TensorFlow
    Chovanec, Martin
    Hasin, Martin
    Havrilla, Martin
    Chovancova, Eva
    APPLIED SCIENCES-BASEL, 2023, 13 (11):
  • [6] Multiplexed Asymmetric Attacks: Next-Generation DDoS on HTTP/2 Servers
    Praseed, Amit
    Thilagam, P. Santhi
    IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, 2020, 15 : 1790 - 1800
  • [7] Application layer HTTP-GET flood DDoS attacks: Research landscape and challenges
    Singh, Karanpreet
    Singh, Paramvir
    Kumar, Krishan
    COMPUTERS & SECURITY, 2017, 65 : 344 - 372
  • [8] Analysis of the Impact of the Slow HTTP DOS and DDOS Attacks on the Cloud Environment
    Yevsieieva, Oksana
    Helalat, Seyed Milad
    2017 4TH INTERNATIONAL SCIENTIFIC-PRACTICAL CONFERENCE PROBLEMS OF INFOCOMMUNICATIONS-SCIENCE AND TECHNOLOGY (PIC S&T), 2017, : 519 - 523
  • [9] Framework for Preprocessing and Feature Extraction from Weblogs for Identification of HTTP Flood Request Attacks
    Sisodia, Dilip Singh
    Verma, Namrata
    2018 INTERNATIONAL CONFERENCE ON ADVANCED COMPUTATION AND TELECOMMUNICATION (ICACAT), 2018,
  • [10] Request Adaptation for Adaptive Streaming over HTTP/2
    Nguyen, Duc V.
    Le, Hung T.
    Pham Ngoc Nam
    Pham, Anh T.
    Truong Cong Thang
    2016 IEEE INTERNATIONAL CONFERENCE ON CONSUMER ELECTRONICS (ICCE), 2016,
12345