Title :
A queue model to detect DDos attacks
Author :
Hao, Shuang ; Song, Hua ; Jiang, Wenbao ; Dai, Yiqi
Author_Institution :
Dept. of Comput. Sci. & Technol., Tsinghua Univ., Beijing
Abstract :
With the development of network communication and collaboration, distributed denial-of-service (DDos) attack increasingly becomes one of the hardest and most annoying network security problems to address. In this paper, we present a new framework to detect the DDos attacks according to the packet flows of specific protocols. Our aim is to detect the attacks as early as possible and avoid the unnecessary false positive. A Gaussian parametrical mixture model is utilized to estimate the normal behavior and a queue model is adopted for detecting the attacks. Experiments verify that our proposed approach is effective and has reasonable accuracy
Keywords :
Internet; queueing theory; security of data; telecommunication security; DDos attack; Gaussian parametrical mixture model; distributed denial-of-service attack; network communication; network security; queue model; Aggregates; Chebyshev approximation; Collaboration; Computer crime; Data models; Degradation; Floods; Network servers; Probability; Protocols;
Conference_Titel :
Collaborative Technologies and Systems, 2005. Proceedings of the 2005 International Symposium on
Conference_Location :
St Louis, MO
Print_ISBN :
0-7695-2387-0
DOI :
10.1109/ISCST.2005.1553301
