DDoS defense by offense

This article presents the design, implementation, analysis, and experimental evaluation of speak-up, a defense against application-level distributed denial-of-service (DDoS), in which attackers cripple a server by sending legitimate-looking requests that consume computational resources (e.g., CPU cycles, disk). With speak-up, a victimized server encourages all clients, resources permitting, to automatically send higher volumes of traffic. We suppose that attackers are already using most of their upload bandwidth so cannot react to the encouragement. Good clients, however, have spare upload bandwidth so can react to the encouragement with drastically higher volumes of traffic. The intended outcome of this traffic inflation is that the good clients crowd out the bad ones, thereby capturing a much larger fraction of the server's resources than before. We experiment under various conditions and find that speak-up causes the server to spend resources on a group of clients in rough proportion to their aggregate upload bandwidths, which is the intended result.National Science Foundation (U.S.) (NSF grant CNS-0225660)National Science Foundation (U.S.) (NSF grant CNS-0520241)United States. Dept. of Defense (National Security Science and Engineering Faculty Fellowship

Obesity and treatment meanings in bariatric surgery candidates: a qualitative study

Background This study used a qualitative approach to comprehend how the morbid obese conceptualize and deal with obesity and obesity treatment, with the particular aim of exploring the expectations and beliefs about the exigencies and the impact of bariatric surgery. Methods The study population included 30 morbid obese patients (20 women and 10 men) with a mean age of 39.17 years (SD = 8.81) and a mean body mass index of 47.5 (SD = 8.2) interviewed individually before surgery using open-ended questions. The interviews were audiotaped, transcribed, and then coded according to grounded analysis methodology. Results Three main thematic areas emerged from the data: obesity, eating behavior, and treatment. Obesity is described as a stable and hereditary trait. Although participants recognize that personal eating behavior exacerbates this condition, patients see their eating behavior as difficult to change and control. Food seems to be an ever-present dimension and a coping strategy, and to follow an adequate diet plan is described as a huge sacrifice. Bariatric surgery emerges as the only treatment for obesity, and participants highlight this moment as the beginning of a new life where health professionals have the main role. Bariatric surgery candidates see their eating behavior as out of their control, and to commit to its demands is seen as a big sacrifice. For these patients, surgery is understood as a miracle moment that will change their lives without requiring an active role or their participation. Conclusion According to these results, it is necessary to validate them with qualitative and quantitative studies; it is necessary to promote a new awareness of the weight loss process and to empower patients before and after bariatric surgery.Bolsa de doutoramento SFRH/BD/37069/2007 da Fundação para a Ciência e a Tecnologia (FCT

Efficient Verifiable Computation of XOR for Biometric Authentication

This work addresses the security and privacy issues in remotebiometric authentication by proposing an efficient mechanism to verifythe correctness of the outsourced computation in such protocols.In particular, we propose an efficient verifiable computation of XORingencrypted messages using an XOR linear message authenticationcode (MAC) and we employ the proposed scheme to build a biometricauthentication protocol. The proposed authentication protocol is bothsecure and privacy-preserving against malicious (as opposed to honest-but-curious) adversaries. Specifically, the use of the verifiable computation scheme together with an homomorphic encryption protects the privacy of biometric templates against malicious adversaries. Furthermore, in order to achieve unlinkability of authentication attempts, while keeping a low communication overhead, we show how to apply Oblivious RAM and biohashing to our protocol. We also provide a proof of security for the proposed solution. Our simulation results show that the proposed authentication protocol is efficient

A Brief Overview of the NEBULA Future Internet Architecture

NEBULA is a proposal for a Future Internet Architecture. It is based on the assumptions that: (1) cloud computing will comprise an increasing fraction of the application workload offered to an Internet, and (2) that access to cloud computing resources will demand new architectural features from a network. Features that we have identified include dependability, security, flexibility and extensibility, the entirety of which constitute resilience.NEBULA provides resilient networking services using ultrareliable routers, an extensible control plane and use of multiple paths upon which arbitrary policies may be enforced. We report on a prototype system, Zodiac, that incorporates these latter two features

Randomized comparison of the effects of the vitamin D(3 )adequate intake versus 100 mcg (4000 IU) per day on biochemical responses and the wellbeing of patients

BACKGROUND: For adults, vitamin D intake of 100 mcg (4000 IU)/day is physiologic and safe. The adequate intake (AI) for older adults is 15 mcg (600 IU)/day, but there has been no report focusing on use of this dose. METHODS: We compared effects of these doses on biochemical responses and sense of wellbeing in a blinded, randomized trial. In Study 1, 64 outpatients (recruited if summer 2001 25(OH)D <61 nmol/L) were given 15 or 100 mcg/day vitamin D in December 2001. Biochemical responses were followed at subsequent visits that were part of clinical care; 37 patients completed a wellbeing questionnaire in December 2001 and February 2002. Subjects for Study 2 were recruited if their 25(OH)D was <51 nmol/L in summer 2001. 66 outpatients were given vitamin D; 51 completed a wellbeing questionnaire in both December 2002 and February 2003. RESULTS: In Study 1, basal summer 25-hydroxyvitamin D [25(OH)D] averaged 48 ± 9 (SD) nmol/L. Supplementation for more than 6 months produced mean 25(OH)D levels of 79 ± 30 nmol/L for the 15 mcg/day group, and 112 ± 41 nmol/L for the 100 mcg/day group. Both doses lowered plasma parathyroid hormone with no effect on plasma calcium. Between December and February, wellbeing score improved more for the 100-mcg/day group than for the lower-dosed group (1-tail Mann-Whitney p = 0.036). In Study 2, 25(OH)D averaged 39 ± 9 nmol/L, and winter wellbeing scores improved with both doses of vitamin D (two-tail p < 0.001). CONCLUSION: The highest AI for vitamin D brought summertime 25(OH)D to >40 nmol/L, lowered PTH, and its use was associated with improved wellbeing. The 100 mcg/day dose produced greater responses. Since it was ethically necessary to provide a meaningful dose of vitamin D to these insufficient patients, we cannot rule out a placebo wellbeing response, particularly for those on the lower dose. This work confirms the safety and efficacy of both 15 and 100 mcg/day vitamin D(3 )in patients who needed additional vitamin D