The cloud pricing model leaves cloud consumers vulnerable to Economic Denial of Sustainability (EDoS) attacks. In this type of attacks, an adversary first identifies web resources with high levels of cloud resource consumption, and then uses a botnet of compromised hosts to make fraudulent requests to these costly web resources. The attacker’s goal is to disrupt the economical sustainability of the victim by inflicting cost through fraudulent consumption of billable cloud resources.In this paper, we propose two different Markov-based models to profile the behavior of legitimate users in terms of their resource consumption and to detect malicious sources engaged in fraudulent use of cloud resources. Our experimental evaluation results demonstrate the effectiveness of the proposed attribution methodology for identifying malicious sources participating in EDoS attacks.
Karami, M., & Chen, S. (2017). Attribution of economic denial of sustainability attacks in public clouds. In Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST (Vol. 198 LNICST, pp. 373–391). Springer Verlag. https://doi.org/10.1007/978-3-319-59608-2_22