Techniques for Detecting and Preventing Denial of Service Attacks (a Systematic Review Approach)

摘要

This paper analyzes denial of service (DoS) attacks and countermeasures based on a systematic review analysis conducted of papers between 2000 and 2016. The paper is based on three searches. The first was conducted using suitable keywords, the second using references used by selected papers, and, the third considered the most cited English-language articles. We discuss 802.11 along with one of the well-known DoS attacks at physical-level access points. Experts suggest using 802.11w, a "cryptographic client puzzle," and "delaying the effect of request" to provide better protection in this layer. The paper discusses four main network defense systems against network-based attacks-source-end, core-end, victim-end, and distributed techniques-with a focus on two innovative methods, the D-WARD and gossip models. This study also discusses chi-squares and intrusion detection systems (IDSs), two effective models to detect DoS and DDoS attacks.