TCP Low Rate DDoS Attack Detection
Publish place: 3rd International Conference on Applied Research in Computer Engineering and Information Technology
Publish Year: 1394
نوع سند: مقاله کنفرانسی
زبان: English
View: 534
This Paper With 14 Page And PDF Format Ready To Download
- Certificate
- من نویسنده این مقاله هستم
استخراج به نرم افزارهای پژوهشی:
شناسه ملی سند علمی:
CITCONF03_443
تاریخ نمایه سازی: 12 تیر 1395
Abstract:
Distributed Denial of Service (DDoS) is one of the more important attacks in computer networks. DDoS attackscan be categorized in to two categories: high rate and low rate. In the high rate DDoS category, the attacker tries to fillup the entire link's bandwidth capacity by flooding the link with packets. On the other hand, in the low rate DDoScategory (i.e. LDDoS), the attacker executes a DDoS attack while keeping a low average transmission rate. TCPLDDoS is a low rate DDoS attack in which the attacker exploits the TCP congestion control behavior. In this paper, weinvestigate a system for defending against the TCP LDDoS attack and propose a novel method for doing so. We presentsome observation for distinguishing between legitimate and attack behavior. The output of our system is a priorityqueue containing flows so that high priority flows are legitimate and low priority flows are suspicious. We evaluate theproposed system employing the NS2 simulation environment. Results show that our proposed system is able to detectattack flows from legitimate flows properly
Keywords:
Authors
Mohammad Reza Razian
Iran University of Science and Technology, Tehran, Iran
مراجع و منابع این Paper:
لیست زیر مراجع و منابع استفاده شده در این Paper را نمایش می دهد. این مراجع به صورت کاملا ماشینی و بر اساس هوش مصنوعی استخراج شده اند و لذا ممکن است دارای اشکالاتی باشند که به مرور زمان دقت استخراج این محتوا افزایش می یابد. مراجعی که مقالات مربوط به آنها در سیویلیکا نمایه شده و پیدا شده اند، به خود Paper لینک شده اند :