A comparison of SYN flood detection algorithms

Second International Conference on Internet Monitoring and Protection, ICIMP 2007

Volumn , Issue , 2007, Pages 9-

  Beaumont Gay, Matt ^a  

^a UNIVERSITY OF CALIFORNIA   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ALGORITHMS; COMPUTER CRIME; COMPUTER SCIENCE; DISTRIBUTED COMPUTER SYSTEMS; PARAMETER ESTIMATION;

DISTRIBUTED DENIAL OF SERVICE (DDOS) ATTACKS; EMULAB NETWORK; FLOOD DETECTION;

INTRUSION DETECTION;

EID: 35348813037     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICIMP.2007.1     Document Type: Conference Paper

References (8)

1. Dan J. Bernstein. SYN cookies. http://cr.yp.to/syncookies.html, 1997.
2. B. E. Brodsky and B. S. Darkhovsky. Nonparametric Methods in Change-Point Problems. Kluwer Academic Publishers, 1993.
3. CERT Coordination Center. CERT Advisory CA-2001-9 "Code Red" worm exploiting buffer overflow in IIS indexing service DLL. http://www.cert.org/advisories/CA-2001-19.html, Jul 2001.
4. Ramana Rao Kompella, Sumeet Singh, and George Varghese. On scalable attack detection in the network. In Proc. of Internet Measurement Conference. ACM SIGCOMM, 2004.
5. Kirill Levchenko, Ramamohan Paturi, and George Varghese. On the difficulty of scalably detecting network attacks. In Proc. of CCS. ACM SIGSAC, Oct 2004.
6. Vasilios A. Siris and Fotini Papagalou. Application of anomaly detection algorithms for detecting SYN flooding attacks. In Proc. of Globecom. IEEE Communications Society, 2004.
7. Haining Wang, Danlu Zhang, and Kang G. Shin. Detecting SYN flooding attacks. In Proc. of INFOCOM. IEEE Communications Society, 2002.
8. Brian White, Jay Lepreau, Leigh Stoller, Robert Ricci, Shashi Guruprasad, Mac Newbold, Mike Hibler, Chad Barb, and Abhijeet Joglekar. An integrated experimental environment for distributed systems and networks. In Proc. of OSDI, Boston, MA, Dec 2002. USENIX.