Title :
Attack Simulation and Signature Extraction of Low-Rate DoS
Author :
Liu, Zenghui ; Guan, Liguo
Author_Institution :
Sci. & Technol. Eng. Fac., Beijing Vocational Coll. of Electron. Sci., Beijing, China
Abstract :
LDoS (low-rate denial-of-service) was a new type of DoS attack. In this paper, LDoS attack traffic was simulated on OPNET platform and generated by estimating the retransmission time out (RTO) of normal TCP flow based on the analysis of LDoS attack features, and the performance of targets under the attacking of LDoS was tested. We investigated the cache queue of target router for the purpose of detection and defense of LDoS attack. Test result show that two criterions -- packet percentage and threshold--can detect LDoS attack flows.
Keywords :
computer network security; transport protocols; OPNET platform; TCP flow; attack simulation; cache queue; low-rate DoS attack traffic; low-rate denial-of-service; retransmission time out; signature extraction; target router; Analytical models; Computational modeling; Computer crime; Data mining; Educational institutions; Protocols; Telecommunication traffic; Testing; Traffic control; Wavelet analysis; Denial of service; detection; retransmission timeout; threshold;
Conference_Titel :
Intelligent Information Technology and Security Informatics (IITSI), 2010 Third International Symposium on
Conference_Location :
Jinggangshan
Print_ISBN :
978-1-4244-6730-3
Electronic_ISBN :
978-1-4244-6743-3
DOI :
10.1109/IITSI.2010.38
