A Distributed Denial of Service Testbed

• Published in: What Kind of Information Society? Governance, Virtuality, Surveillance, Sustainability, Resilience pp. 338 - 349
• Main Authors: Schmidt, Desmond, Suriadi, Suriadi, Tickle, Alan, Clark, Andrew, Mohay, George, Ahmed, Ejaz, Mackie, James
• Format: Book Chapter
• Language: English
• Published: Berlin, Heidelberg Springer Berlin Heidelberg
• Series: IFIP Advances in Information and Communication Technology
• Subjects: Distributed Denial of Service; Testbed Development
• ISBN: 3642154786; 9783642154782
• ISSN: 1868-4238; 1861-2288
• DOI: 10.1007/978-3-642-15479-9_32

The Denial of Service Testing Framework (dosTF) being developed as part of the joint India-Australia research project for ’Protecting Critical Infrastructure from Denial of Service Attacks’ allows for the construction, monitoring and management of emulated Distributed Denial of Service attacks using modest hardware resources. The purpose of the testbed is to study the effectiveness of different DDoS mitigation strategies and to allow for the testing of defense appliances. Experiments are saved and edited in XML as abstract descriptions of an attack/defense strategy that is only mapped to real resources at run-time. It also provides a web-application portal interface that can start, stop and monitor an attack remotely. Rather than monitoring a service under attack indirectly, by observing traffic and general system parameters, monitoring of the target application is performed directly in real time via a customised SNMP agent.