Metode Pertahanan Web Server Terhadap Distributed Slow HTTP DoS Attack

  • Molavi Arman AMIK MDP

Abstract

Meningkatnya kecepatan internet selalu diikuti meningkatnya pula gangguan keamanan dalam jaringan komputer.Hal ini cukup mengganggu layanan yang terhubung ke jaringan LAN maupun internet. Gangguan keamanan ini dikenal dengan DDoS (Distributed Denial of Service).  Serangan DoS slow HTTP adalah salah satu metode serangan DoS yang menargetkan server HTTP. Metode ini menghambat layanan dengan membanjiri sehingga menimbulkan kumpulan koneksi dengan permintaan yang lambat dan banyak menuju web server. Diketahui bahwa serangan slow HTTP DoS oleh satu penyerang dapat dicegah secara efektif dengan membatasi jumlah koneksi untuk setiap alamat IP. Di sisi lain, juga diketahui bahwa sulit untuk bertahan dari serangan slow HTTP DoS dari beberapa penyerang. Ancaman serangan DDoS semakin serius, jadi membutuhkan metode pertahanan yang efektif terhadap serangan DoS slow HTTP terdistribusi. Ketika web server berada di jaringan publik atau internet, maka melindungi komputer dan keamanan jaringan adalah masalah penting. Setelah mengidentifikasi dan menganalisis cara kerja serangan slow HTTP, serta deteksi serangannya, tulisan ini menjelaskan sistem kerja, cara mendeteksi, dan cara mempertahankan diri terhadap serangan slow HTTP.

References

[1] kaspersky.com, 21-May-2019. [Online]. Available: https://www.kaspersky.com/about/press-releases/2019_a-ddos-storm-has-come-number-of-attacks-grows-after-long-period-of-decline. [Accessed: 29-jan-2020].

[2] S. Suroto, “A Review of Defense Against Slow HTTP Attack,” JOIV : International Journal on Informatics Visualization, vol. 1, no. 4, p. 127, Apr. 2017.

[3] R. Agarwal, “Defending the Network from Real IoT Threats,” Security Magazine RSS, 28-Jul-2015. [Online]. Available: https://www.securitymagazine.com/articles/86545-defending-the-network-from-real-iot-threats. [Accessed: 30-Jan-2020].

[4] J. Park, “Analysis of Slow Read DoS Attack and Countermeasures on Web servers,” International Journal of Cyber-Security and Digital Forensics, vol. 4, no. 2, pp. 339–353, 2015.

[5] Burak, B. Guzel, B. Guzel, B. G. B. Guzel, and B. Guzel, “HTTP Headers for Dummies,” Code Envato Tuts , 02-Dec-2009. [Online]. Available: https://code.tutsplus.com/tutorials/http-headers-for-dummies--net-8039. [Accessed: 05-Feb-2020].

[6] N. Tripathi, N. Hubballi, and Y. Singh, “How Secure are Web Servers? An Empirical Study of Slow HTTP DoS Attacks and Detection,” 2016 11th International Conference on Availability, Reliability and Security (ARES), 2016.

[7] D Sai Krishna et al,”Application Denial of Service Attacks Detection using Group Testing Based Approach“. International Journal of Computer Science & Communication Networks,Vol 2(2), pp. 167- 171, Feb. 2012 .

[8] “How slow HTTP can knock down a server?,” GeeksforGeeks, 23-May-2017. [Online]. Available: https://www.geeksforgeeks.org/slow-http-can-knock-server/. [Accessed: 05-Feb-2020].

[9] “Analyzing the Anatomy of a DoS attack using Slowloris,” The Official Admin-Ahead Blog, 12-Apr-2016. [Online]. Available: https://admin-ahead.com/blog/analyzing-the-anatomy-of-a-dos-attack-using-slowloris/. [Accessed: 05-Feb-2020].

[10] D. Senecal, “The Akamai Blog Subscribe,” Slow DoS on the Rise - The Akamai Blog. [Online]. Available: https://blogs.akamai.com/2013/09/slow-dos-on-the-rise.html. [Accessed: 05-Feb-2020].

[11] S. Mendon, “Slow DOS Attack: Why It Is Dangerous and How to Detect Using a SIEM,” Cyber Security & Information Security Services. [Online]. Available: https://www.paladion.net/blogs/how-to-detect-slow-dos-attack-using-siem. [Accessed: 05-Feb-2020].

[12] S. Tayama and H. Tanaka, “Analysis of Effectiveness of Slow Read DoS Attack and Influence of Communication Environment,” 2017 Fifth International Symposium on Computing and Networking (CANDAR), pp. 350–359, 2017.

[13] E. Cambiaso, G. Papaleo, G. Chiola, and M. Aiello, “Slow DoS attacks: definition and categorisation,” International Journal of Trust Management in Computing and Communications, vol. 1, no. 3/4, pp. 300–319, 2013.

[14] J. Park, “Analysis of Slow Read DoS Attack and Countermeasures on Web servers,” International Journal of Cyber-Security and Digital Forensics, vol. 4, no. 2, pp. 339–353, 2015.

[15] T. Hirakawa, K. Ogura, B. B. Bista, and T. Takata, “A Defense Method against Distributed Slow HTTP DoS Attack,” 2016 19th International Conference on Network-Based Information Systems (NBiS), pp. 152–158, 2016.
Published
2020-04-15