Title :
EBDT: A method for detecting LDoS attack
Author :
Kai Chen ; Huiyu Liu ; Xiaosu Chen
Author_Institution :
Sch. of Comput. Sci. & Tech., Huazhong Univ. of Sci. & Tech., Wuhan, China
Abstract :
The Low-rate Denial of Service (LDoS), as a new type of DoS, is more difficult to be detected due to its concealment and variety. However, whenever a kind of LDoS attack occurs, the TCP traffic becomes unusual: its distribution and decreased degree are significantly different than those without any LDoS attacks. Based on these characteristics, a method for detecting LDoS attacks called EBDT is proposed, which detects LDoS attacks by analyzing the variation of TCP traffic. Simulations show that EBDT can detect LDoS attacks effectively and the testing results with the real network traffic show that EBDT has a low false-positive rate.
Keywords :
computer network security; telecommunication traffic; transport protocols; EBDT; LDoS attack detection; TCP traffic; low-rate denial of service attack; real network traffic; Computer crime; Computers; Educational institutions; Electronic mail; Fluctuations; Telecommunication traffic; Training data; EWMA; LDoS; Low rate denial of service; detection criterions;
Conference_Titel :
Information and Automation (ICIA), 2012 International Conference on
Conference_Location :
Shenyang
Print_ISBN :
978-1-4673-2238-6
Electronic_ISBN :
978-1-4673-2236-2
DOI :
10.1109/ICInfA.2012.6246912
