{"id":"https://openalex.org/W3212591162","doi":"https://doi.org/10.1145/3460120.3484747","title":"Scan, Test, Execute: Adversarial Tactics in Amplification DDoS Attacks","display_name":"Scan, Test, Execute: Adversarial Tactics in Amplification DDoS Attacks","publication_year":2021,"publication_date":"2021-11-12","ids":{"openalex":"https://openalex.org/W3212591162","doi":"https://doi.org/10.1145/3460120.3484747","mag":"3212591162"},"language":"en","primary_location":{"id":"doi:10.1145/3460120.3484747","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484747","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484747","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484747","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5017422238","display_name":"Harm Griffioen","orcid":"https://orcid.org/0009-0006-7990-7802"},"institutions":[{"id":"https://openalex.org/I143288331","display_name":"Hasso Plattner Institute","ror":"https://ror.org/058rn5r42","country_code":"DE","type":"facility","lineage":["https://openalex.org/I143288331","https://openalex.org/I176453806"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Harm Griffioen","raw_affiliation_strings":["Hasso Plattner Institute, Potsdam, Germany"],"affiliations":[{"raw_affiliation_string":"Hasso Plattner Institute, Potsdam, Germany","institution_ids":["https://openalex.org/I143288331"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5055198854","display_name":"Kris Oosthoek","orcid":"https://orcid.org/0000-0002-6088-5950"},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Kris Oosthoek","raw_affiliation_strings":["Technische Universiteit Delft, Delft, Netherlands"],"affiliations":[{"raw_affiliation_string":"Technische Universiteit Delft, Delft, Netherlands","institution_ids":["https://openalex.org/I98358874"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5018748902","display_name":"Paul van der Knaap","orcid":null},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Paul van der Knaap","raw_affiliation_strings":["Technische Universiteit Delft, Delft, Netherlands"],"affiliations":[{"raw_affiliation_string":"Technische Universiteit Delft, Delft, Netherlands","institution_ids":["https://openalex.org/I98358874"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5000335949","display_name":"Christian Doerr","orcid":null},"institutions":[{"id":"https://openalex.org/I143288331","display_name":"Hasso Plattner Institute","ror":"https://ror.org/058rn5r42","country_code":"DE","type":"facility","lineage":["https://openalex.org/I143288331","https://openalex.org/I176453806"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Christian Doerr","raw_affiliation_strings":["Hasso Plattner Institute, Potsdam, Germany"],"affiliations":[{"raw_affiliation_string":"Hasso Plattner Institute, Potsdam, Germany","institution_ids":["https://openalex.org/I143288331"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5017422238"],"corresponding_institution_ids":["https://openalex.org/I143288331"],"apc_list":null,"apc_paid":null,"fwci":4.1609,"has_fulltext":true,"cited_by_count":35,"citation_normalized_percentile":{"value":0.94220595,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"940","last_page":"954"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12519","display_name":"Cybercrime and Law Enforcement Studies","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.8385469317436218},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.8369343280792236},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.734209418296814},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7330390214920044},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.6891293525695801},{"id":"https://openalex.org/keywords/spoofing-attack","display_name":"Spoofing attack","score":0.6617779731750488},{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.6014838218688965},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.4762585163116455},{"id":"https://openalex.org/keywords/service","display_name":"Service (business)","score":0.4482116401195526},{"id":"https://openalex.org/keywords/test","display_name":"Test (biology)","score":0.43324369192123413},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.39841216802597046},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.17390072345733643},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.1702914834022522},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.1155872642993927}],"concepts":[{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.8385469317436218},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.8369343280792236},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.734209418296814},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7330390214920044},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.6891293525695801},{"id":"https://openalex.org/C167900197","wikidata":"https://www.wikidata.org/wiki/Q11081100","display_name":"Spoofing attack","level":2,"score":0.6617779731750488},{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.6014838218688965},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.4762585163116455},{"id":"https://openalex.org/C2780378061","wikidata":"https://www.wikidata.org/wiki/Q25351891","display_name":"Service (business)","level":2,"score":0.4482116401195526},{"id":"https://openalex.org/C2777267654","wikidata":"https://www.wikidata.org/wiki/Q3519023","display_name":"Test (biology)","level":2,"score":0.43324369192123413},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.39841216802597046},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.17390072345733643},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.1702914834022522},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.1155872642993927},{"id":"https://openalex.org/C162853370","wikidata":"https://www.wikidata.org/wiki/Q39809","display_name":"Marketing","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.0},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3460120.3484747","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484747","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484747","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"pmh:oai:tudelft.nl:uuid:b9bf8076-85f4-4011-a731-f4aba18a80a0","is_oa":false,"landing_page_url":"http://resolver.tudelft.nl/uuid:b9bf8076-85f4-4011-a731-f4aba18a80a0","pdf_url":null,"source":{"id":"https://openalex.org/S4306400906","display_name":"Research Repository (Delft University of Technology)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I98358874","host_organization_name":"Delft University of Technology","host_organization_lineage":["https://openalex.org/I98358874"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"conference paper"}],"best_oa_location":{"id":"doi:10.1145/3460120.3484747","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484747","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484747","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3212591162.pdf","grobid_xml":"https://content.openalex.org/works/W3212591162.grobid-xml"},"referenced_works_count":21,"referenced_works":["https://openalex.org/W818725295","https://openalex.org/W1796296964","https://openalex.org/W1989454965","https://openalex.org/W2001637908","https://openalex.org/W2050326248","https://openalex.org/W2061133001","https://openalex.org/W2111542531","https://openalex.org/W2164686665","https://openalex.org/W2345976710","https://openalex.org/W2538104847","https://openalex.org/W2609739210","https://openalex.org/W2610896886","https://openalex.org/W2743785144","https://openalex.org/W2762279010","https://openalex.org/W2768883253","https://openalex.org/W2958882612","https://openalex.org/W2973936959","https://openalex.org/W2981181114","https://openalex.org/W3082048389","https://openalex.org/W3102059489","https://openalex.org/W4289038676"],"related_works":["https://openalex.org/W2921012173","https://openalex.org/W2614907253","https://openalex.org/W2560748881","https://openalex.org/W4362599004","https://openalex.org/W2137087002","https://openalex.org/W3212591162","https://openalex.org/W3163710541","https://openalex.org/W4362632616","https://openalex.org/W2784057693","https://openalex.org/W2547072668"],"abstract_inverted_index":{"Amplification":[0],"attacks":[1,75],"generate":[2],"an":[3,24],"enormous":[4],"flood":[5,45],"of":[6,18,42,49,79,105],"unwanted":[7],"traffic":[8],"towards":[9],"a":[10,36,54],"victim":[11],"and":[12,72,93],"are":[13],"generated":[14],"with":[15],"the":[16,39,43,50,74,90,102],"help":[17],"open,":[19],"unsecured":[20],"services,":[21],"to":[22,35,61,68,88,99],"which":[23,80],"adversary":[25],"sends":[26],"spoofed":[27],"service":[28],"requests":[29],"that":[30],"trigger":[31],"large":[32],"answer":[33],"volumes":[34],"victim.":[37],"However,":[38],"actual":[40],"execution":[41],"packet":[44],"is":[46],"only":[47],"one":[48],"activities":[51],"necessary":[52],"for":[53,59],"successful":[55],"attack.":[56],"Adversaries":[57],"need,":[58],"example,":[60],"develop":[62],"attack":[63],"tools,":[64],"select":[65],"open":[66],"services":[67],"abuse,":[69],"test":[70],"them,":[71],"adapt":[73],"if":[76],"necessary,":[77],"each":[78],"can":[81],"be":[82],"implemented":[83],"in":[84],"myriad":[85],"ways.":[86],"Thus,":[87],"understand":[89],"entire":[91,103],"ecosystem":[92],"how":[94],"adversaries":[95],"work,":[96],"we":[97],"need":[98],"look":[100],"at":[101],"chain":[104],"activities.":[106]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":8},{"year":2024,"cited_by_count":8},{"year":2023,"cited_by_count":14},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":1}],"updated_date":"2026-04-02T15:55:50.835912","created_date":"2025-10-10T00:00:00"}