Inundating a system, network, or application with traffic is the goal of Denial of Service (DoS) attacks, a disruptive form of attack. SSL DoS attacks, particularly those involving renegotiation, are of particular concern. In order to address these types of attacks, the study proposes several security measures, including rate restriction, session caching, SSL acceleration, and integrating Intrusion Detection Systems (IDS) with a systematic technique method to reduce the risks associated with SSL renegotiation DoS attacks. This study investigates the security measures for preventing and mitigating SSL DoS attacks, with a focus on renegotiation attacks. It offers advice and insights for protecting systems to SSL server administrators and network security professionals by doing rate restriction, session caching, and SSL acceleration to avoid SSL DoS attacks.

1.
Cheema
,
A.
,
Thariq
,
M.
,
Hafiz
,
A.
,
Khan
,
M.
,
Ahmad
,
F.
, &
Anwar
,
M.
(
2022
).
Prevention Techniques against Distributed Denial of Service Attacks in Heterogeneous Networks: A Systematic Review
.
Security and Communication Networks.
2.
Alcaraz
,
C.
,
Cumplido
,
J.
, &
Trivino
,
A.
(
2023
).
OCPP in the spotlight: threats and countermeasures for electric vehicle charging infrastructures 4.0
.
International Journal of Information Security
,
1
27
.
3.
Wang
,
Y.
,
Hu
,
B.
,
Pan
,
X.
,
Xu
,
T.
, &
Sun
,
Q.
(
2022
).
Security control of Denial-of-Service attacks in Cyber-Physical Systems based on dynamic feedback
.
Computational Intelligence and Neuroscience.
4.
Zlomislić
,
V.
,
Fertalj
,
K.
, &
Sruk
,
V.
(
2017
).
Denial of service attacks, defences and research challenges
.
Cluster Computing
,
20
,
661
671
.
5.
Birkinshaw
,
C.
,
Rouka
,
E.
, &
Vassilakis
,
V.
(
2019
).
Implementing an intrusion detection and prevention system using software-defined networking: Defending against port-scanning and denial-of-service attacks
.
Journal of Network and Computer Applications
,
71
85
.
6.
Mantas
,
G.
,
Stakhanova
,
N.
,
Gonzalez
,
H.
,
Jazi
,
H. H.
, &
Ghorbani
,
A. A.
(
2015
).
Application-layer denial of service attacks: taxonomy and survey
.
International Journal of Information and Computer Security
,
7
(
2-4
),
216
239
.
7.
Liao
,
H. J.
,
Lin
,
C. H. R.
,
Lin
,
Y. C.
, &
Tung
,
K. Y.
(
2013
).
Intrusion detection system: A comprehensive review
.
Journal of Network and Computer Applications
,
36
(
1
),
16
24
.
8.
Lin
,
M.
,
Zhao
,
B.
, &
Xin
,
Q.
(
2020
, October).
ERID: A deep learning-based approach towards efficient real-time intrusion detection for IoT
.
In 2020 IEEE eighth international conference on Communications and Networking (ComNet)
(pp.
1
7
).
IEEE
.
9.
Sieklik
,
B.
,
Macfarlane
,
R.
, &
Buchanan
,
W. J.
(
2016
).
Evaluation of TFTP DDoS amplification attack
.
computers & security
,
57
,
67
92
.
10.
Mondal
,
B.
,
Koner
,
C.
,
Chakrabortyy
,
M.
, &
Gupta
,
S.
(
2022
).
Detection and Investigation of DDoS attacks in network traffic using machine learning algorithms
.
Int. J. Innov. Technol. Explor. Eng.
,
11
(
6
),
1
6
11.
Carl
,
G.
,
Kesidis
,
G.
,
Brooks
,
R. R.
, &
Rai
,
S.
(
2006
).
Denial-of-service attack-detection techniques
.
IEEE Internet Computing
,
10
(
1
),
82
89
.
12.
Bhiogade
,
M. S.
(
2022
).
Secure socket layer
.
Computer Science and Information Technology Education Conference
, (pp.
85
90
).
13.
Stephani
,
E.
,
Nova
,
F.
, &
Asri
,
E.
(
2020
).
Implementation and Analysis of IDS (Intrusion Detection System) Network Security Using Suricata on Web Server
.
Scientific Journal of Information Technology.
14.
Pascoal
,
T.
,
Fonseca
,
I.
, &
Nigam
,
V.
(
2020
).
Slow denial-of-service attacks on software-defined networks
.
Computer Networks.
15.
Ioulianou
,
P. P.
, &
Vassilakis
,
V. G.
(
2020
).
Denial-of-service attacks and countermeasures in the RPL-based Internet of Things
.
In Computer Security: ESORICS 2019 International Workshops, CyberICPS, SECPRE, SPOSE, and ADIoT, Luxembourg City, Luxembourg
, September 26-27, 2019 Revised Selected Papers 5 (pp.
374
390
).
Springer International Publishing
.
This content is only available via PDF.
You do not currently have access to this content.