Go, change the

RV College Major Project Phase -II : world

of 18MCN41
Engineering Implementation of WebSocket Compression and
Client libraries for DDoS secure Kitura

HARISH KUMAR S
1RV18SCN05

Prof Girish Rao Salanke N S Pushkar N Kulkarni

Assistant Professor Lead Developer,Kitura
Dept of CSE, RVCE IBM-ISL

M.Tech in Computer Network Engineering – Feb 2020 1

 RV College
of Go, change the
Engineerin
g world
PRESENTATION CONTENTS

• Introduction
• Refinement of objectives
• Refinement of Methodology
• Major Project Implementation Timeline
• Work Completed
• References

M.Tech in Computer Science and Engineering – Feb 2020 2

RV College
of Go, change the world
Engineerin
g

Introduction

• Kitura is a free and open-source web framework written in Swift, developed

by IBM and licensed under Apache 2.0.
• Kitura uses libcurl and Swift-NIO - cross-platform asynchronous event-
driven network application framework - at core.

M.Tech in Computer Science and Engineering – Feb 2020 3

RV College
of Go, change the world
Engineerin
g

Refinement of objectives

• Implement a mechanism to defend against Slow HTTP DDoS attack

• Creation of standalone client library add-on for Kitura based on Swift-NIO
• Modify Kitura WebSocket Service to support compression, add compression
library to support the same.

M.Tech in Computer Science and Engineering – Feb 2020 4

RV College
of
Engineerin
g

Refinement of Methodology

Defense against Slow HTTP DDoS attack

One of the solutions to Slow HTTP attack is to

limit request size, number of connections to
server.
This can be achieved by :
•Adding server configuration to set limit on
POST request size and number of connections.
•Rejecting connections which do not agree
with configured parameters
RV College
of
Engineerin
g

Refinement of Methodology

WebSocket Compression, Client libraries based

on Swift-NIO

•SwiftNIO - a cross-platform asynchronous event-

driven network application framework for rapid
development of maintainable high performance
protocol servers & clients.
•Asynchronous operation advantages: improve
throughput, latency, and/or responsiveness  of
application.
RV College
of
Engineerin
g

Refinement of Methodology

Kitura-WebSocket-NIO channel
Typical Swift-NIO channel
RV College
of
Engineerin
g

Refinement of Methodology

Kitura-WebSocket-NIO channel with compression handlers

RV College
of Go, change the
Engineerin
g
world
Major Project Implementation Timeline

M.Tech in Computer Science and Engineering – Feb 2020 9

RV College
of Go, change the
Engineerin
g
world
Work Completed

Project Phase Status

Completed
Requirement Analysis

Enivornment Setup and Literature Survey Completed

Implementation of feature 1 In Progress

M.Tech in Computer Science and Engineering – Feb 2020 10

RV College
of Go, change the
Engineerin
g
world
References
[1]. E. Alomari, S. Manickam, B. B. Gupta, S. Karuppayah, and R. Alfaris, Botnet-based Distributed
Denial of Service (DDoS) Attacks on Web Servers: Classification and Art, International Journal of
Computer Applications, Vol. 49, no. 7, pp. 24-32, Jul., 2012.
[2]. E. Cambiaso, G. Papaleo, G. Chiola, M. Aiello, "Slow DoS attacks: Definition and
categorisation", Int. J. Trust Manage. Comput. Commun., vol. 1, no. 3, pp. 300-319, Jan. 2013.
[3]. J.-S. Yang, M.-W. Park, and T.-M. Chung, "A study on lowrate ddos attacks in real networks," in
Information Science and Applications (ICISA), 2013 International Conference on. IEEE, 2013, pp.
1-4.
[4]. K. Hong, Y. Kim, H. Choi, et al., “SDN-Assisted Slow HTTP DDoS Attack Defense Method”,
IEEE Communications Letters, vol.22, no.4, 2018, pp. 688-691.
[5]. T. Hirakawa, K. Ogura, B. B. Bista, and T. Takata, “A Defense Method against Distributed Slow
HTTP DoS Attack,” in Proc. Int. Conf. NBiS, 2016, pp. 152-158.
[6]. N. Tripathi, N. Hubballi, and Y. Singh, “How Secure are Web Servers? An Empirical Study of
Slow HTTP DoS Attacks and Detection”, in Proc. Int. Conf. ARES, 2016, pp. 454-463.
[7]. Giralte, L. C., Conde, C., de Diego, I. M., & Cabello, E.. “Detecting denial of service by
modelling web-server behaviour”.Computers & Electrical Engineering, 2013, 39(7), 2252–2262

M.Tech in Computer Science and Engineering – Feb 2020 11

RV College
of Go, change the
Engineerin
g
world
References
[9] Ian Fette, Alexey Melnikov , “The WebSocket Protocol”, IETF, December 2011.
[8] J. Park, K. Iwai, H. Tanaka, T. Kurokawa, "Analysis of slow read dos attack", Information Theory
and its Applications (ISITA) 2014 International Symposium on, pp. 60-64, 2014.
[10] T. Yoshino, “Compression Extensions for WebSocket”, IETF, December 2015.
[11] S. Suresh, N. Sankar Ram, M. Mohan, "An Optimistic Approach to Interpret the DDoS Attacks
By Wielding Deterministic Packet Marking", Smart Structures and Systems (ICSSS) 2019
International Conference on, pp. 1-4, 2019.
[12] Shunsuke Tayama, Hidema Tanaka, "Analysis of Effectiveness of Slow Read DoS Attack and
Influence of Communication Environment", Computing and Networking (CANDAR) 2017 Fifth
International Symposium on, pp. 510-515, 2017.

M.Tech in Computer Science and Engineering – Feb 2020 12

RV College
of Go, change the
Engineerin
g
world

Thank You