Inferring Internet denial-of-service activity

Moore, David; Shannon, Colleen; Brown, Douglas J.; Voelker, Geoffrey M.; Savage, Stefan

doi:10.1145/1132026.1132027

articleACM Transactions on Computer SystemsMay 1, 2006Closed access

Inferring Internet denial-of-service activity

DMDavid Moore CSColleen Shannon DJDouglas J. Brown GMGeoffrey M. Voelker SSStefan Savage

University of California San Diego

Indexed incrossref

Abstract

In this article, we seek to address a simple question: “How prevalent are denial-of-service attacks in the Internet?” Our motivation is to quantitatively understand the nature of the current threat as well as to enable longer-term analyses of trends and recurring patterns of attacks. We present a new technique, called “backscatter analysis,” that provides a conservative estimate of worldwide denial-of-service activity. We use this approach on 22 traces (each covering a week or more) gathered over three years from 2001 through 2004. Across this corpus we quantitatively assess the number, duration, and focus of attacks, and qualitatively characterize their behavior. In total, we observed over 68,000 attacks…

Citation impact

789

total citations

FWCI: 61.48
Percentile: 100%
References: 28

Citations per year

Authors

5

Topics & keywords

Topics

Keywords

Denial-of-service attack
Computer science
The Internet
Denial
Computer security
Internet privacy
Service (business)
Focus (optics)

UN Sustainable Development Goals

Peace, Justice and strong institutions

No related works found for this paper.