Repository logo
 
No Thumbnail Available
Publication

Torrent Poisoning Protection with a Reverse Proxy Server

Use this identifier to reference this record.
Name:Description:Size:Format: 
electronics-12-00165.pdf1.35 MBAdobe PDF Download

Advisor(s)

Abstract(s)

A Distributed Denial-of-Service attack uses multiple sources operating in concert to attack a network or site. A typical DDoS flood attack on a website targets a web server with multiple valid requests, exhausting the server’s resources. The participants in this attack are usually compromised/infected computers controlled by the attackers. There are several variations of this kind of attack, and torrent index poisoning is one. A Distributed Denial-of-Service (DDoS) attack using torrent poisoning, more specifically using index poisoning, is one of the most effective and disruptive types of attacks. These web flooding attacks originate from BitTorrent-based file-sharing communities, where the participants using the BitTorrent applications cannot detect their involvement. The antivirus and other tools cannot detect the altered torrent file, making the BitTorrent client target the webserver. The use of reverse proxy servers can block this type of request from reaching the web server, preventing the severity and impact on the service of the DDoS. In this paper, we analyze a torrent index poisoning DDoS to a higher education institution, the impact on the network systems and servers, and the mitigation measures implemented.

Description

Keywords

torrent poisoning index poisoning HAProxy reversed proxy Distributed Denial-ofService (DDoS) flooding attack

Citation

Godinho, A.; Rosado, J.; Sá, F.; Caldeira, F.; Cardoso, F. Torrent Poisoning Protection with a Reverse Proxy Server. Electronics 2023, 12, 165. https://doi.org/10.3390/ electronics12010165

Research Projects

Organizational Units

Journal Issue