Cash Overflow - Revision history

Andrew Smith: Updated grammar, risk factors, threat agents

2013-12-30T22:31:21Z

Updated grammar, risk factors, threat agents

Psiinon at 12:57, 9 September 2011

2011-09-09T12:57:32Z

Psiinon: Created page with "{{Template:Attack}}
Category:OWASP ASDR Project Last revision (mm/dd/yy): '''{{REVISIONMONTH}}/{{REVISIONDAY}}/{{REVISIONYEAR}}''' ==Description== A Cash Overflow at..."

2011-09-09T12:54:55Z

Created page with "{{Template:Attack}} <br> Category:OWASP ASDR Project Last revision (mm/dd/yy): '''{{REVISIONMONTH}}/{{REVISIONDAY}}/{{REVISIONYEAR}}''' ==Description== A Cash Overflow at..."

New page

{{Template:Attack}}
<br>
[[Category:OWASP ASDR Project]]

Last revision (mm/dd/yy): '''{{REVISIONMONTH}}/{{REVISIONDAY}}/{{REVISIONYEAR}}'''

==Description==
A Cash Overflow attack is a [[Category:Denial of Service]] attack specifically aimed at exceeding the hosting costs for a cloud application, either essentially bankrupting the service owner or exceeding the application cost limits leading the Cloud Service Provider disabling the application.

==Risk Factors==
TBD
[[Category:FIXME|need content]]

==Related [[Threat Agents]]==
* [[:Category:Logical Attacks]]
[[Category:FIXME|not a threat agent]]

==Related [[Attacks]]==
* [[Denial of Service]]

==Related [[Vulnerabilities]]==
* [[:Category: Input Validation Vulnerability]]
* [[:Category: API Abuse]]

==Related [[Controls]]==
* TBD
[[Category:FIXME|need links]]

==References==
* http://capec.mitre.org/data/index.html - Denial of Service through Resource Depletion

[[Category: Spoofing]]
[[Category: Probabilistic Techniques]]
[[Category: Resource Depletion]]
[[Category:Attack]]

@@ Line 8: / Line 8: @@
 ==Description==
-A Cash Overflow attack is a [[Denial of Service]] attack specifically aimed at exceeding the hosting costs for a cloud application, either essentially bankrupting the service owner or exceeding the application cost limits leading the Cloud Service Provider disabling the application.
+A Cash Overflow attack is a [[Denial of Service]] attack specifically aimed at exceeding the hosting costs for a cloud application, either essentially bankrupting the service owner or exceeding the application cost limits, leading the cloud service provider to disable the application.
 ==Risk Factors==
-TBD
+* Given enough resources, fairly easy to launch attack
-[[Category:FIXME|need content]]
+* Quickly detected due to immediate downtime/resources consumption/logging
 ==Related [[Threat Agents]]==
-* [[:Category:Logical Attacks]]
+* Most likely an [[:Category:Internet_attacker]]
 ==Related [[Attacks]]==
@@ Line 26: / Line 26: @@
 ==Related [[Controls]]==
-* TBD
+* DoS Prevention Techniques
 ==References==

Cash Overflow - Revision history

Andrew Smith: Updated grammar, risk factors, threat agents

Psiinon at 12:57, 9 September 2011

Psiinon: Created page with "{{Template:Attack}} Category:OWASP ASDR Project Last revision (mm/dd/yy): '''{{REVISIONMONTH}}/{{REVISIONDAY}}/{{REVISIONYEAR}}''' ==Description== A Cash Overflow at..."

Psiinon: Created page with "{{Template:Attack}}
Category:OWASP ASDR Project Last revision (mm/dd/yy): '''{{REVISIONMONTH}}/{{REVISIONDAY}}/{{REVISIONYEAR}}''' ==Description== A Cash Overflow at..."