{"id":"https://openalex.org/W2766692711","doi":"https://doi.org/10.1109/est.2017.8090411","title":"HTTP/2 Tsunami: Investigating HTTP/2 proxy amplification DDoS attacks","display_name":"HTTP/2 Tsunami: Investigating HTTP/2 proxy amplification DDoS attacks","publication_year":2017,"publication_date":"2017-09-01","ids":{"openalex":"https://openalex.org/W2766692711","doi":"https://doi.org/10.1109/est.2017.8090411","mag":"2766692711"},"language":"en","primary_location":{"id":"doi:10.1109/est.2017.8090411","is_oa":false,"landing_page_url":"https://doi.org/10.1109/est.2017.8090411","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 Seventh International Conference on Emerging Security Technologies (EST)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://pureadmin.qub.ac.uk/ws/files/138103125/dbeckett_ssezer_Paper_Tsunami_Final.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5044005815","display_name":"David Beckett","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"David Beckett","raw_affiliation_strings":["CSIT, Queens University, Belfast, Northern Ireland"],"affiliations":[{"raw_affiliation_string":"CSIT, Queens University, Belfast, Northern Ireland","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5103745938","display_name":"Sakir Sezer","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Sakir Sezer","raw_affiliation_strings":["CSIT, Queens University, Belfast, Northern Ireland"],"affiliations":[{"raw_affiliation_string":"CSIT, Queens University, Belfast, Northern Ireland","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5044005815"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.2193,"has_fulltext":false,"cited_by_count":10,"citation_normalized_percentile":{"value":0.60116534,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"128","last_page":"133"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.9475534558296204},{"id":"https://openalex.org/keywords/testbed","display_name":"Testbed","score":0.8369119167327881},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7610655426979065},{"id":"https://openalex.org/keywords/hypertext-transfer-protocol","display_name":"Hypertext Transfer Protocol","score":0.7555117607116699},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.611448347568512},{"id":"https://openalex.org/keywords/application-layer-ddos-attack","display_name":"Application layer DDoS attack","score":0.5686609745025635},{"id":"https://openalex.org/keywords/trinoo","display_name":"Trinoo","score":0.5091668963432312},{"id":"https://openalex.org/keywords/protocol","display_name":"Protocol (science)","score":0.5014603137969971},{"id":"https://openalex.org/keywords/bandwidth","display_name":"Bandwidth (computing)","score":0.4647136926651001},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.456696093082428},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.24836397171020508},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.2115057110786438}],"concepts":[{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.9475534558296204},{"id":"https://openalex.org/C31395832","wikidata":"https://www.wikidata.org/wiki/Q1318674","display_name":"Testbed","level":2,"score":0.8369119167327881},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7610655426979065},{"id":"https://openalex.org/C149672775","wikidata":"https://www.wikidata.org/wiki/Q8777","display_name":"Hypertext Transfer Protocol","level":3,"score":0.7555117607116699},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.611448347568512},{"id":"https://openalex.org/C120865594","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Application layer DDoS attack","level":4,"score":0.5686609745025635},{"id":"https://openalex.org/C43639116","wikidata":"https://www.wikidata.org/wiki/Q7843050","display_name":"Trinoo","level":5,"score":0.5091668963432312},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.5014603137969971},{"id":"https://openalex.org/C2776257435","wikidata":"https://www.wikidata.org/wiki/Q1576430","display_name":"Bandwidth (computing)","level":2,"score":0.4647136926651001},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.456696093082428},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.24836397171020508},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.2115057110786438},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C204787440","wikidata":"https://www.wikidata.org/wiki/Q188504","display_name":"Alternative medicine","level":2,"score":0.0},{"id":"https://openalex.org/C142724271","wikidata":"https://www.wikidata.org/wiki/Q7208","display_name":"Pathology","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/est.2017.8090411","is_oa":false,"landing_page_url":"https://doi.org/10.1109/est.2017.8090411","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 Seventh International Conference on Emerging Security Technologies (EST)","raw_type":"proceedings-article"},{"id":"pmh:oai:pure.qub.ac.uk/portal:publications/8a74d56a-f1cc-4e35-a7ab-eba442705c20","is_oa":true,"landing_page_url":"https://pure.qub.ac.uk/en/publications/8a74d56a-f1cc-4e35-a7ab-eba442705c20","pdf_url":"https://pureadmin.qub.ac.uk/ws/files/138103125/dbeckett_ssezer_Paper_Tsunami_Final.pdf","source":{"id":"https://openalex.org/S4306402319","display_name":"Research Portal (Queen's University Belfast)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I126231945","host_organization_name":"Queen's University Belfast","host_organization_lineage":["https://openalex.org/I126231945"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Beckett , D &amp; Sezer , S 2017 , ' HTTP/2 Tsunami: Investigating HTTP/2 Proxy Amplification DDoS Attacks ' . https://doi.org/10.1109/EST.2017.8090411","raw_type":"conferenceObject"}],"best_oa_location":{"id":"pmh:oai:pure.qub.ac.uk/portal:publications/8a74d56a-f1cc-4e35-a7ab-eba442705c20","is_oa":true,"landing_page_url":"https://pure.qub.ac.uk/en/publications/8a74d56a-f1cc-4e35-a7ab-eba442705c20","pdf_url":"https://pureadmin.qub.ac.uk/ws/files/138103125/dbeckett_ssezer_Paper_Tsunami_Final.pdf","source":{"id":"https://openalex.org/S4306402319","display_name":"Research Portal (Queen's University Belfast)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I126231945","host_organization_name":"Queen's University Belfast","host_organization_lineage":["https://openalex.org/I126231945"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Beckett , D &amp; Sezer , S 2017 , ' HTTP/2 Tsunami: Investigating HTTP/2 Proxy Amplification DDoS Attacks ' . https://doi.org/10.1109/EST.2017.8090411","raw_type":"conferenceObject"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G5334834590","display_name":null,"funder_award_id":"EP/H049606/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G5445011987","display_name":null,"funder_award_id":"EP/K004379/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G745166385","display_name":null,"funder_award_id":"EP/G034303/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"}],"funders":[{"id":"https://openalex.org/F4320320357","display_name":"Queen's University Belfast","ror":"https://ror.org/00hswnk62"},{"id":"https://openalex.org/F4320321832","display_name":"Queen's University","ror":"https://ror.org/02y72wh86"},{"id":"https://openalex.org/F4320334627","display_name":"Engineering and Physical Sciences Research Council","ror":"https://ror.org/0439y7842"}],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W2766692711.pdf"},"referenced_works_count":5,"referenced_works":["https://openalex.org/W1660261345","https://openalex.org/W1848712724","https://openalex.org/W1989454965","https://openalex.org/W2108716870","https://openalex.org/W2288803724"],"related_works":["https://openalex.org/W2783466926","https://openalex.org/W4286539397","https://openalex.org/W1968168724","https://openalex.org/W2204131204","https://openalex.org/W4322008378","https://openalex.org/W2383770723","https://openalex.org/W2754163055","https://openalex.org/W2186749541","https://openalex.org/W2360429410","https://openalex.org/W4256682929"],"abstract_inverted_index":{"Distributed":[0],"Denial":[1],"of":[2],"Service":[3],"(DDoS)":[4],"attacks":[5],"cause":[6],"significant":[7],"damage":[8],"to":[9,39,55,65,76,88,100,111],"computer":[10],"systems":[11],"by":[12],"taking":[13],"a":[14,36,50,86,94,103],"system":[15],"offline.":[16],"Hypertext":[17],"Transfer":[18],"Protocol":[19],"(HTTP),":[20],"is":[21,106,109],"the":[22,56,98,112],"most":[23],"commonly":[24],"used":[25],"protocol":[26,32,43],"for":[27],"web":[28],"services.":[29],"The":[30],"HTTP":[31],"has":[33],"recently":[34],"received":[35],"major":[37],"update":[38],"HTTP/2.":[40],"This":[41],"new":[42],"provides":[44],"increased":[45],"functionality,":[46],"however":[47],"this":[48,69,73],"poses":[49],"threat":[51],"from":[52,82],"DDoS":[53],"due":[54],"larger":[57],"attack":[58,105],"surface.":[59],"HTTP/2":[60,87],"implements":[61],"novel":[62],"compression":[63,74],"techniques":[64],"reduce":[66],"bandwidth,":[67],"in":[68,85],"paper":[70],"we":[71],"explore":[72],"technology":[75],"providing":[77],"understanding":[78],"on":[79],"its":[80],"risk":[81],"DDoS,":[83],"specifically":[84],"HTTP/1":[89],"proxy":[90],"deployment.":[91],"We":[92],"implement":[93],"testbed":[95],"and":[96],"measure":[97],"bandwidth":[99],"show":[101],"that":[102],"amplification":[104,115],"possible":[107],"which":[108],"comparable":[110],"current":[113],"largest":[114],"attacks.":[116]},"counts_by_year":[{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":2},{"year":2019,"cited_by_count":1}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}