DDoS attacks detection model and its application

WSEAS Transactions on Computers

Volumn 7, Issue 8, 2008, Pages 1159-1168

  Li, Muhai ^a,b   Li, Ming ^a   Jiang, Xiuying ^b  

^a EAST CHINA NORMAL UNIVERSITY   (China)

^b ZAOZHUANG UNIVERSITY   (China)

Author keywords

Algorithm; Application; Attack; DDoS; Detection; Modal

Indexed keywords

ALGORITHMS; APPLICATIONS; DISTRIBUTED COMPUTER SYSTEMS; INTERNET;

ALGORITHM; APPLICATION; ATTACK; DDOS; DETECTION; MODAL;

COMPUTER CRIME;

EID: 59249106247     PISSN: 11092750     EISSN: None     Source Type: Journal    
DOI: None     Document Type: Article

References (29)

1. Denial of Service Attacks http://www.cert.org/techp̃s/ denial_of_service.html, 2008.
2. Background on DDoS http://www.ddos.com/index.php?content=products/ background.html, 2008.
3. Editorial, Distributed denial-of-service and intrusion detection, Journal of Network and Computer Applications, Vol. 30, 2007, pp.819-822.
4. K. Lee, K. Kim, et al., DDoS attack detection method using cluster analysis, Expert Systems with Applications, 2007, doi:10.1016/ j.eswa. 2007.01.040.
5. V. Paxson, Bro: a system for detecting network intruders in realtime, Computer Networks Vol. 31, 1999, pp. 2435-63.
6. L. Ricciuli, P. Lincoln, P. Kakkar, TCP SYN flooding defense, Communication Networks and Distributed Systems Modeling and Simulation (CNDS '99), 1999, pp. 17-20.
7. E. Strother, Denial of service protection the Nozzle, In: Proceedings of the 16th annual computer security applications conference (ASAC'00), 2000, pp. 32-41.
8. T. Anderson, T. Roscoe, D.Wetherall, Preventing internet denial-of-service with capabilities, Computer Communications Review, Vol. 34, No. 1, 2004, pp. 39-41
9. C. Kreibich, J. Crowcroft, Honeycomb - creating intrusion detection signatures using honeypots, Computer Communication Review (ACM SIGCOMM), Vol. 34, No. 1, 2004, pp. 51-56.
10. W. Allen, G. Marin, The LoSS technique for detecting new denial of service attacks, SoutheastCon, 2004. Proceedings. IEEE, 2004, pp. 302-309.
11. K. M. Yu, M. F. Wu, Protocol-Based With Feature Selection in Intrusion Detection, WSEAS Transactions on Computer, Vol. 3, No. 3, 2008, pp. 135-146.
12. A. Asosheh, N. Ramezania, A comprehensive faxonomy of DDoS attacks and defense mechanism applying in a smart classification, WSEAS Transactions on Communications, Vol 7, No. 4, 2008, pp. 281-290
13. H. Sun, B. Fang, H. Zhang, A new intrusion Detection Approach based on Network Tomography, WSEAS Transactions on Information Science & Applications, Vol.3, No. 2, 2006, pp. 211-117.
14. D. H. Kang, B. K. Kim, J. T. Oh, Protocol anomaly and pattern matching based intrusion detection system, WSEAS Transactions on Communication, Vol.4, No. 10, 2005, pp. 994-1101.
15. G. Carl, et al., Denial-of-Service Attack Detection Techniques, IEEE Internet Computing, Vol. 10, No. 1, 2006, pp. 82-89.
16. M. Li, An approach to reliably identifying signs of DDoS flood attacks based on LRD traffic pattern recognition, Computers & Security, Vol. 23, 2004, pp. 549-558.
17. M. Li, Change trend of averaged Hurst parameter of traffic under DDoS flood attacks, Computers & Security, Vol. 25, No. 3, 2006, pp. 213-220.
18. G. Carl, R. R. Brook, S. Rai, Wavelet based denial-of-Service detection, Computers & Security, Vol. 25, 2006, pp. 600-615.
19. M. Hamdi, N. Boudriga, Detecting denial - of - service attacks using the wavelet transform, Computer Communications. Vol. 30, 2007, pp. 3203-3213.
20. A. Antoniadis, I. Gijbels, Detecting abrupt changes by wavelet methods, Technical Report, Laboratoire LMC-IMAG. France: Universite Joseph Fourier, 1997. 9.
21. N. Ye, X. Li, et al., Probabilistic techniques for intrusion detection based on computer audit data, IEEE Transactions on Systems, Man and Cybernetics ? Part A: Systems and Humans, Vol. 31, No.4, 2001, pp. 266-274.
22. S.Y. Jina, et al., Network intrusion detection in covariance feature space, Pattern Recognition, Vol. 40, 2007, pp. 2185-2197.
23. L. Feinstein, et al., Statistical approaches to DDoS attack detection and response, In: DARPA information survivability conference and exposition proceedings, Vol. 1, 2003, pp. 303-314.
24. C.Krugel, T.Toth, E.Kirda, Service specific anomaly detection for network intrusion detection, ACM, 2002.
25. P. Abry, R. Baraniuk, et al., Multiscale nature of network traffic, IEEE Signal Processing, Vol. 19, No. 3, 2002, pp. 28-46.
26. P. Barford, J. Kline, D. Plonka, A.Ron, A signal analysis of network traffic anomalies, In: Proceedings of ACM SIGCOMM Internet measurement workshop, Marseilles, France, 2002.
27. V. Paxson, Measurements and analysis of end-to-end internet dynamics, Ph.D. thesis, University of California Berkeley, 1997.
28. T. Peng, C. Leckie and R. Kotagiri. Detecting reflector attacks by sharing beliefs, In: Proceedings of IEEE Global Conference, Globecom, 2003.
29. A. Papuilis, S. U. Pillai, Probability, Random Variables, stochastic Processes, McGraw-Hill Inc., 2002.