Analysis of accounting models for the detection of duplicate requests in web services

The Denial of Service (DoS) attack is the major issue in the web service environment, especially in critical infrastructures like government websites. It is the easiest one for the attackers where they continuously generate the duplicate request with less effort to mitigate the availability of server resources to others. To detect and prevent this type of duplicate request attacks, accounting the client history (i.e., client request detail) is very important. This paper proposes a cookie based accounting model, which will record each and every client request in the cookie and the hash value of the cookie in the server database to detect the client’s misbehavior like modifying the cookie information or resending (replay) the prior request cookie with the current request. Also this paper has analyzed all the accounting models including the proposed accounting model with respect to qualitative and quantitative results to prove the proposed model efficiency. The proposed model achieves more than 56% efficiency compared to the next efficient existing model.