Title :
DDoS Attacks Detection Using GA Based Optimized Traffic Matrix
Author :
Lee, Je Hak ; Kim, Dong Seong ; Lee, Sang Min ; Park, Jong Sou
Author_Institution :
Comput. Eng., Korea Aerosp. Univ., Goyang, South Korea
fDate :
June 30 2011-July 2 2011
Abstract :
Threat of Distributed Denial of Service (DDoS) attacks has been increasing with growth of computer and network infrastructures. DDoS attacks generating mass traffics make network bandwidth and/or system resources depleted. Therefore, it is significant to detect DDoS attacks in early stage. Our previous approach used a traffic matrix to detect DDoS attack. However, it is hard to tune up the parameters of the matrix including (i) size of traffic matrix, (ii) packet based window size, and (iii) threshold value of variance from packets information with respect to various monitoring environments and DDoS attacks. In this paper, we propose an enhanced DDoS attacks detection approach which (i) improves the traffic matrix building operation and (ii) optimizes the parameters of the traffic matrix using Genetic Algorithm (GA). We perform experiments with DARPA 2000 dataset and LBL-PKT-4 dataset of Lawrence Berkeley Laboratory to show its performance in terms of detection accuracy and speed.
Keywords :
genetic algorithms; security of data; telecommunication traffic; DARPA 2000 dataset; LBL-PKT-4 dataset; Lawrence Berkeley Laboratory; computer infrastructures; distributed denial of service attacks detection; genetic algorithm based optimized traffic matrix; mass traffics; network infrastructures; packet based window size; Computational modeling; Computer crime; Computers; Delay; Genetic algorithms; IP networks; Monitoring; DDoS attacks; genetic algorithm; intrusion detection; traffic matrix;
Conference_Titel :
Innovative Mobile and Internet Services in Ubiquitous Computing (IMIS), 2011 Fifth International Conference on
Conference_Location :
Seoul
Print_ISBN :
978-1-61284-733-7
Electronic_ISBN :
978-0-7695-4372-7
DOI :
10.1109/IMIS.2011.116
