Detecting distributed computer network attacks: A multi-dimensional wavelet approach

Author

Hamdi, Mohamed ; Grira, Nouha ; Boudriga, Noureddine

Author_Institution

Commun. & Network Security Res. Lab., SupCom, Ariana

fYear

2005

fDate

11-14 Dec. 2005

Firstpage

Lastpage

Abstract

A technique for anomaly-based detection of distributed attacks is presented. It relies on defining attacks as mathematical singularities in a set of monitored metrics. The decay of wavelet maxima moduli across scales is the basic decision criterion. The most important advantage of this method is that it differentiates between anomalies and attacks, which enhances the false alarm rate. An example, describing a real attack, illustrates the efficiency of the approach.

Keywords

computer networks; security of data; wavelet transforms; anomaly-based detection; distributed computer network attack detecting; false alarm rate; mathematical singularities; multidimensional wavelet approach; wavelet maxima moduli; Communication networks; Computer networks; Computer security; Computerized monitoring; Concrete; Data security; Intrusion detection; Pattern recognition; Protection; Spatial databases;

fLanguage

English

Publisher

ieee

Conference_Titel

Electronics, Circuits and Systems, 2005. ICECS 2005. 12th IEEE International Conference on

Conference_Location

Gammarth

Print_ISBN

978-9972-61-100-1

Electronic_ISBN

978-9972-61-100-1

Type

conf

DOI

10.1109/ICECS.2005.4633459

Filename

4633459

Link To Document

https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2950607