• DocumentCode
    1679521
  • Title

    Detecting DDoS Attacks by Analyzing Client Response Patterns

  • Author

    Soejima, Yuji ; Chen, Eric Y. ; Fuji, Hitoshi

  • Author_Institution
    NTT Corporation
  • fYear
    2005
  • Firstpage
    98
  • Lastpage
    101
  • Abstract
    Distributed Denial of Service (DDoS) attacks is becoming a serious threat on the Internet. Not only network professionals but also end users are now aware of the attacks. Most of these attacks simply flood a massive amount of packets towards a target. In this paper, we propose to detect DDoS attacks by analyzing client response patterns after the reply packets from the server are intentionally delayed. While legitimate clients would react to such delay by decreasing their sending rates, malicious clients would simply keep on flooding the server. The effectiveness of this proposal is evaluated using our prototype.
  • Keywords
    Computer crime; Delay; Floods; Laboratories; Network servers; Pattern analysis; Proposals; Prototypes; Web and internet services; Web server;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Applications and the Internet Workshops, 2005. Saint Workshops 2005. The 2005 Symposium on
  • Print_ISBN
    0-7695-2263-7
  • Type

    conf

  • DOI
    10.1109/SAINTW.2005.1619987
  • Filename
    1619987
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1679521