The Internet has become a universal communication network tool. It has evolved from a platform that supports best-effort traffic to one that now carries different traffic types including those involving continuous media with quality of service (QoS) requirements. As more services are delivered over the Internet, we face increasing risk to their availability given that malicious attacks on those Internet services continue to increase. Several networks have witnessed denial of service (DoS) and distributed denial of service (DDoS) attacks over the past few years which have disrupted QoS of network services, thereby violating the Service Level Agreement (SLA) between the client and the Internet Service Provider (ISP). Hence DoS or DDoS attacks are major threats to network QoS. In this paper we survey techniques and solutions that have been deployed to thwart DoS and DDoS attacks and we evaluate them in terms of their impact on network QoS for Internet services. We also present vulnerabilities that can be exploited for QoS protocols and also affect QoS if exploited. In addition, we also highlight challenges that still need to be addressed to achieve end-to-end QoS with recently proposed DoS/DDoS solutions.
Bibliographical noteThis is the peer reviewed version of the following article: Fowler, S. , Zeadally, S. and Chilamkurti, N. (2011), Impact of denial of service solutions on network quality of service. Security Comm. Networks, 4: 1089-1103, which has been published in final form at https://doi.org/10.1002/sec.219. This article may be used for non-commercial purposes in accordance With Wiley Terms and Conditions for self-archiving.
- denial of service