• The Journal of Korea Institute of Information, Electronics, and Communication Technology
• /
• v.8 no.5
• /
• pp.429-437
• /
• 2015

DDoS attacks have been used for paralyzing popular Internet services. Especially, amplification attacks have grown dramatically in recent years. Defending against amplification attacks is challenging since the attacks usually generate extremely hugh amount of traffic and attack traffic is coming from legitimate servers, which is hard to differentiate from normal traffic. Moreover, some of protocols used by amplification attacks are widely adopted in IoT devices so that the number of servers susceptible to amplification attacks will continue to increase. This paper studies on the analysis of amplification attack mechanisms in detail and proposes defense methodologies for scenarios where attackers, abused servers or victims are in a monitoring network.

• Journal of Convergence for Information Technology
• /
• v.10 no.12
• /
• pp.22-30
• /
• 2020

With the development of information and communication technology, DDoS and DRDoS continue to become security issues, and gradually develop into advanced techniques. Recently, IT companies have been threatened with DRDoS technology, which uses protocols from normal servers to exploit as reflective servers. Reflective traffic is traffic from normal servers, making it difficult to distinguish from security equipment and amplified to a maximum of Tbps in real-life cases. In this paper, after comparing and analyzing the DNS amplification and Memcached amplification used in DRDoS attacks, a countermeasure that can reduce the effectiveness of the attack is proposed. Protocols used as reflective traffic include TCP and UDP, and NTP, DNS, and Memcached. Comparing and analyzing DNS protocols and Memcached protocols with higher response sizes of reflective traffic among the protocols used as reflective traffic, Memcached protocols amplify ±21% more than DNS protocols. The countermeasure can reduce the effectiveness of an attack by using the Memcached Protocol's memory initialization command. In future studies, various security-prone servers can be shared over security networks to predict the fundamental blocking effect.

• Journal of Advanced Navigation Technology
• /
• v.9 no.2
• /
• pp.121-130
• /
• 2005

In this paper, we designed and fabricated the VHF wireless transmitter for air traffic control. Fundamental performance of the investigated wireless transmitter is designed and fabricated to satisfy existing commercial wireless transmitter specification for air traffic control. 25 W and 50 W of output power can be generated by changing the power amplification part only. It is based on transmitting voice communication using AM modulation. Investigated wireless transmitter for air traffic control consists of four module parts: power supply, control, low power transmission and power amplification. We designed 1W transmitter to operate without power amplification part. It can be used properly in a basic component of CNS/ATM.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.2
• /
• pp.303-311
• /
• 2015

DNS amplification is a new type of DDoS Attack and nowadays the attack occurs frequently. The previous studies showed the several detection ways such as the traffic analysis based on DNS queries and packet size. However, those methods have some limitations such as the uncertainty of packet size which depends on IP address type and vulnerabilities against distributed amplification attack. Therefore, we proposed a novel traffic analyzing algorithm using Success Rate and implemented the query analyzing system.

• Computational Structural Engineering
• /
• v.10 no.4
• /
• pp.337-347
• /
• 1997

The dynamic responses of highway bridges are varying depending on the features of either traveling vehicles or bridges. In this study, the probabilistic characteristics of dynamic amplification factors of highway bridges due to traveling heavy vehicles have been examined through analytical simulation processes. The truck with tandem axle and tractor with semitrailer are selected as the representative heavy vehicles, which are modeled with three dimensional 7-DOF and 12-DOF models, respectively. The analytical results have been compared with the experimental results of dynamic loading tests and the validity of the analytical models has been examined. Parametric studies on the means and extreme values of amplification factors have been performed with various traffic conditions such as vehicle types, vehicle weights, surface profiles, number of loading vehicles, loading positions, etc.

• Advances in Computational Design
• /
• v.8 no.1
• /
• pp.1-12
• /
• 2023

To consider the effects of the increasing speed of next-generation high-speed trains, the existing traffic safety code for railway bridges needs to be improved. This study suggests a numerical method of evaluating the new effects of this increasing speed on railway bridges. A prestressed concrete (PSC) box bridge with a 40 m span length on the Gyeongbu track sector is selected as a representative example of high-speed railway bridges in Korea. Numerical models considering the inertial mass forces of a 38-degree-of-freedom train and the interaction forces with the bridge as well as track irregularities are presented in detail. The vertical deflections and accelerations of the deck are calculated and compared to find the new effects on the bridge arising with increasing speed under simply and continuously supported boundary conditions. The ratios between the static and dynamic responses are calculated as the dynamic amplification factors (DAFs) under different running speeds to evaluate the traffic safety. The maximum deflection and acceleration caused by the running speed are indicated, and regression equations for predicting these quantities based on the speed are also proposed.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2021.05a
• /
• pp.108-110
• /
• 2021

Since 2015, attacks using the IoT protocol have been continuously reported. Among various IoT protocols, attackers attempt DDoS attacks using SSDP(Simple Service Discovery Protocol), and as statistics of cyber shelters, Korea has about 1 million open SSDP servers. Vulnerable SSDP servers connected to the Internet can generate more than 50Gb of traffic and the risk of attack increases gradually. Until recently, distributed denial of service attacks and distributed reflective denial of service attacks have been a security issue. Accordingly, the purpose of this study is to analyze the request packet of the existing SSDP protocol to identify an amplification attack and to avoid a response when an amplification attack is suspected, thereby preventing network load due to the occurrence of a large number of response packets due to the role of traffic reflection amplification.

• International Journal of Highway Engineering
• /
• v.14 no.2
• /
• pp.29-36
• /
• 2012

In this study, frequently passing vehicles with two, three, four, and five axles were chosen through traffic volume analysis in Kyung-In Expressway in order to analyze how the road roughness and vehicle speed affect on the dynamic loads for roads in various vehicle classes. Dynamic loads according to chosen vehicles are estimated by TruckSim program. Dynamic load amplification factor is ratio between dynamic and static loads, and it is also determined for each vehicle classes. From the result of dynamic loads estimated by the dynamic load amplification factor, it is shown that for three-axles vehicle, when IRI is 3.5 and vehicle speed is 100km/hr, asphalt pavements receive additional 36% of static loads in maximum. The analysis of the amplification factor according to each vehicle classes also indicates that the amplification factor increases as the distance between the axles becomes smaller and each axle receives more loads.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.24 no.12
• /
• pp.1670-1675
• /
• 2020

In this study, to provide the basis for establishing effective network based countermeasures against DRDoS(Distributed Reflection Denial of Service) attacks, we propose a new 'DRDoS attack multi-level detection method' that identifies the network based characteristics of DRDoS and applies probability and statistical techniques. The proposed method removes the limit to which normal traffic can be indiscriminately blocked by unlimited competition in network bandwidth by amplification of reflectors, which is characteristic of DRDoS. This means that by comparing 'Server to Server' and 'Outbound Session Incremental' for it, accurate DRDoS identification and detection is possible and only statistical and probabilistic thresholds are applied to traffic. Thus, network-based information security systems can take advantage of this to completely eliminate DRDoS attack frames. Therefore, it is expected that this study will contribute greatly to identifying and responding to DRDoS attacks.

• Proceedings of the Computational Structural Engineering Institute Conference
• /
• 1997.10a
• /
• pp.8-14
• /
• 1997

The dynamic responses of highway bridges are varying depending on the features of either traveling vehicles or bridges. In this study, the probabilistic characteristics of dynamic amplification factors of highway bridges due to traveling heavy vehicles have been examined through analytical simulation processes. The truck with tandem axle and tractor with semitrailer are selected as the representative heavy vehicles, which are modeled with three dimensional 7-DOF and 12-DOF models, respectively. The analytical results have been compared with the experimental results of dynamic loading tests and the validity of the analytical models has been examined. Parametric studies on the means and extreme values of amplification factors have been performed with various traffic conditions such as vehicle types, vehicle weights, surface profiles, vehicle velocity, etc.