Vulnerability of network mechanisms to sophisticated DDoS attacks

Udi Ben-Porat*, Anat Bremler-Barr, Hanoch Levy

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review


In recent years, we have experienced a wave of DDoS attacks threatening the welfare of the internet. These are launched by malicious users whose only incentive is to degrade the performance of other, innocent, users. The traditional systems turn out to be quite vulnerable to these attacks. The objective of this work is to take a first step to close this fundamental gap, aiming at laying a foundation that can be used in future computer/network designs taking into account the malicious users. Our approach is based on proposing a metric that evaluates the vulnerability of a system. We then use our vulnerability metric to evaluate a data structure which is commonly used in network mechanisms the Hash table data structure. We show that Closed Hash is much more vulnerable to DDoS attacks than Open Hash, even though the two systems are considered to be equivalent by traditional performance evaluation. We also apply the metric to queuing mechanisms common to computer and communications systems. Furthermore, we apply it to the practical case of a hash table whose requests are controlled by a queue, showing that even after the attack has ended, the regular users still suffer from performance degradation or even a total denial of service.

Original languageEnglish
Article number6158635
Pages (from-to)1031-1043
Number of pages13
JournalIEEE Transactions on Computers
Issue number5
StatePublished - 2013


  • DDoS
  • hash
  • malicious
  • metric
  • queue
  • vulnerability


Dive into the research topics of 'Vulnerability of network mechanisms to sophisticated DDoS attacks'. Together they form a unique fingerprint.

Cite this