Title :
Chaos theory based detection against network mimicking DDoS attacks
Author :
Chonka, Ashley ; Singh, Jaipal ; Zhou, Wanlei
Author_Institution :
Sch. of Eng. & Inf. Technol., Deakin Univ., Melbourne, VIC, Australia
Abstract :
DDoS attack traffic is difficult to differentiate from legitimate network traffic during transit from the attacker, or zombies, to the victim. In this paper, we use the theory of network self-similarity to differentiate DDoS flooding attack traffic from legitimate self-similar traffic in the network. We observed that DDoS traffic causes a strange attractor to develop in the pattern of network traffic. From this observation, we developed a neural network detector trained by our DDoS prediction algorithm. Our preliminary experiments and analysis indicate that our proposed chaotic model can accurately and effectively detect DDoS attack traffic. Our approach has the potential to not only detect attack traffic during transit, but to also filter it.
Keywords :
chaos; network theory (graphs); neural nets; telecommunication computing; telecommunication security; telecommunication traffic; DDoS prediction algorithm; chaos theory based detection; chaotic model; distributed denial-of-service attacks; network mimicking DDoS attack; network traffic; neural network detector; Chaos; Computer crime; Degradation; Detectors; Filters; Neural networks; Prediction algorithms; Predictive models; Telecommunication traffic; Traffic control; Distributed denial-of-service (DDoS), anomaly detection, chaotic models;
Journal_Title :
Communications Letters, IEEE
DOI :
10.1109/LCOMM.2009.090615
