Title :
Defending against UDP Flooding by Negative Selection Algorithm Based on Eigenvalue Sets
Author :
Xu Rui ; Ma Wen-Li ; Zheng Wen-Ling
Author_Institution :
Bioelectrical Res. Center, Shanghai Univ., Shanghai, China
Abstract :
A defense system against UDP flooding attack with artificial immune detection was put forward, and four sections detection with weight was proposed based on considering the uncontinuity of IP address. Eigenvalue matching was introduced based on analyzing the r-continuous bits matching rule. Using the new matching rule the negative selection algorithm was improved both in detector generation and "black hole" detection. The detectors and the eigenvalue filter windows are applied to detect all of nonself modes. Simulation results show that the defense system could effectively detect the fake IP addresses from UDP flooding and insure the server could be accessed by legal users. Also, the consumption of the detection time is not increased significantly.
Keywords :
IP networks; Internet; artificial immune systems; eigenvalues and eigenfunctions; pattern matching; security of data; set theory; telecommunication security; transport protocols; Internet; UDP flooding attack defense system; artificial immune detection system; black hole detection; detector generation; eigenvalue filter window; eigenvalue matching; eigenvalue set; fake IP address detection; intrusion detection system; legal user; negative selection algorithm; r-continuous bit matching rule; Artificial immune systems; Computer crime; Detectors; Eigenvalues and eigenfunctions; Floods; Immune system; Information security; Intrusion detection; Protocols; Unicast; UDP flooding; artificial immune detection; black holes; eigenvalue; negative selection;
Conference_Titel :
Information Assurance and Security, 2009. IAS '09. Fifth International Conference on
Conference_Location :
Xi´an
Print_ISBN :
978-0-7695-3744-3
DOI :
10.1109/IAS.2009.280
