DENIAL OF SERVICE MEETING
July 21, 1999
3085 EU II
Matt Bishop (MB), Dean Sniegowski (DS), Tuomas Aura (TA), John Hughes (JH) and Steven Cheung (SC)
- Looking for a Fresh Approach to Denial of Service
- TA: Summary of philosophical ideas, existing models, shortcomings etc.
- Need a sample of real attacks (Matt will provide some next week)
- SC: Degradation of Service vs. Denial of Service
- MB: Definitions
- Degradation of Service - when features fail to respond (violation of policy).
- Denial of Service - Degradation of Service that becomes unacceptably high.
- MB: SYN Flood Attack - Replication wouldn't help, but cutting back the pipeline (blocking SYN packets) would help.
- TA: Advanced models - stateless protocols
- Network Inhibition - reduce capacity of links in the network - reduce bandwidth between nodes - minimum cuts needed in the graph to disconnect the client(s) from the server
- JH: Only looks at one attack occurring, not several simultaneously
- Damage and cost curses additive or multiplicative with simultaneous attacks?
- For Next Week
- Matt - Provide Tuomas with Denial of Service attacks
- Review Tuomas' paper
- JH and MB will work on Watchers Paper and incorporate Steven's comments
- Dean will continue to work on the Serbian problem - talk with Hochemi in the Logic Engineering department.