@inproceedings{2290d64084554c559c49d43edd01c931,
title = "DDoS attack on cloud auto-scaling mechanisms",
abstract = "Auto-scaling mechanisms are an important line of defense against Distributed Denial of Service (DDoS) in the cloud. Using auto-scaling, machines can be added and removed in an on-line manner to respond to fluctuating load. It is commonly believed that the auto-scaling mechanism casts DDoS attacks into Economic Denial of Sustainability (EDoS) attacks. Rather than suffering from performance degradation up to a total denial of service, the victim suffers only from the economic damage incurred by paying for the extra resources required to process the bogus traffic of the attack. Contrary to this belief, we present and analyze the Yo-Yo attack, a new attack against the auto-scaling mechanism, that can cause significant performance degradation in addition to economic damage. In the Yo-Yo attack, the attacker sends periodic bursts of overload, thus causing the auto-scaling mechanism to oscillate between scale-up and scale-down phases. The Yo-Yo attack is harder to detect and requires less resources from the attacker compared to traditional DDoS. We demonstrate the attack on Amazon EC2 [4], and analyze protection measures the victim can take by reconfiguring the auto-scaling mechanism.",
keywords = "Auto-scaling, Cloud attack, Denial-of-service attack, Distributed systems security, Economic-Denial-of-Sustainability attack",
author = "Anat Bremler-Barr and Eli Brosh and Mor Sides",
note = "Publisher Copyright: {\textcopyright} 2017 IEEE.; 2017 IEEE Conference on Computer Communications, INFOCOM 2017 ; Conference date: 01-05-2017 Through 04-05-2017",
year = "2017",
month = oct,
day = "2",
doi = "https://doi.org/10.1109/INFOCOM.2017.8057010",
language = "الإنجليزيّة",
series = "Proceedings - IEEE INFOCOM",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
booktitle = "INFOCOM 2017 - IEEE Conference on Computer Communications",
address = "الولايات المتّحدة",
}