On the application of anomaly detection in Reliable Server Pooling systems for improved robustness against denial of service attacks

In: 33rd IEEE Conference on Local Computer Networks (LCN 2008)
IEEE Computer Soc. (2008), S. 207-214
ISBN: 978-1-4244-2413-9
Buchaufsatz / Kapitel / Fach: Informatik
Zentrale wissenschaftliche Einrichtungen » Institut für Experimentelle Mathematik (IEM) Essen
The Reliable Server Pooling (RSerPool) architecture is the IETFpsilas upcoming standard of a lightweight server redundancy and session failover framework for availability-critical applications. RSerPool combines the ideas from different research areas into a single, resource-efficient and unified architecture. Although there have already been a number of research papers on the pool management, load distribution and failover handling performance of RSerPool, the robustness against intentional attacks has not been intensively addressed yet. Therefore, the first goal of this paper is to provide a robustness analysis in order to outline the attack bandwidth necessary for a significant impact on RSerPool-based services. After that, we present our anomaly detection approach that has been designed to protect RSerPool systems against attacks. We also show the effectiveness of this approach by simulations.