Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
An Investigation of the Impact of the Slow HTTP DOS and DDOS attacks on the Cloud environment
Blekinge Institute of Technology.
2017 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

Cloud computing has brought many benefits to the IT industry, and could reduce the cost and facilitate the growth of businesses specially the startup companies which don’t have enough financial resources to build their own IT infrastructure.

One of the main reason that companies hesitate to use cloud services is the security issues that the cloud computing technology has.

This thesis at the beginning has an overview on the cloud computing concept and then reviews the cloud security vulnerabilities according to the cloud security alliance, then it describes the cloud denial of service and will focus on analyzing the Slow HTTP DOS attack and then will analyze the direct and indirect impact of these attacks on virtual machines.

We decided to analyze the HTTP slow rate attacks because of the craftiness and covered characteristic also the catastrophic impact of the Slow HTTP attack whether it’s lunched on the cloud component or lunched from the cloud.

There are some researches on the different way that a web server or web service can be protected against slow HTTP attacks, but there is a research gap about the impact of the attack on virtual environment or whether this attack has cross VM impact or not.

This thesis investigates the impact of Slow HTTP attack on virtualization environment and will analyze the direct and indirect impact of these attack. For analyzing the Slow HTTP attacks, Slow headers, Slow body and Slow read are implemented using Slowhttptest and OWASP Switchblade software, and Wireshark is used to capture the traffic. For analyzing the impact of the attack, attacks are lunched on VirtualBox and the impact of the attack on the victim VM and neighbor VM is measured.

Place, publisher, year, edition, pages
2017. , 74 p.
Keyword [en]
Slow HTTP DOS, Cloud computing Vulnerabilities, DOS on cloud, DOS on Virtual machines
National Category
Telecommunications
Identifiers
URN: urn:nbn:se:bth-14754OAI: oai:DiVA.org:bth-14754DiVA: diva2:1117240
Subject / course
ET2580 Master's Thesis (120 credits) in Electrical Engineering with emphasis on Telecommunication Systems
Presentation
2017-05-30, J1280, SE-371 79 Karlskrona Sweden, Karlskrona, 16:12 (English)
Supervisors
Examiners
Available from: 2017-06-29 Created: 2017-06-28 Last updated: 2017-06-29Bibliographically approved

Open Access in DiVA

fulltext(4321 kB)58 downloads
File information
File name FULLTEXT02.pdfFile size 4321 kBChecksum SHA-512
f4400b2398c3d9a8020a68df1f4118393ab8114e9cea2fecf4f939e98ae9fb3531c9af691a9c37a831dad66ddfe744607f5d389a6fcb951962ad4b48c1af7f22
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Helalat, Seyed Milad
By organisation
Blekinge Institute of Technology
Telecommunications

Search outside of DiVA

GoogleGoogle Scholar
Total: 58 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 8861 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf