Title :
Detecting DDOS Attack Based on One-Way Connection Density
Author :
Xu, Tu ; He, Da Ke ; Zheng, Yu
Author_Institution :
Sch. of Inf. Sci. & Technol., Southwest Jiaotong Univ., Sichuan
Abstract :
How to find essential features between normal stream and attack stream and identify the distributed denial of service (DDoS) attack online with simple algorithm are two critical issues in detecting DDoS attack which will contribute to identifying DDoS attack with low false positive and low false negative. According to the features of DDoS attack, a conception of one-way connection density (OWCD) and time serial analysis on OWCD are proposed in this paper. Then a DDoS detecting algorithm based on the mechanism of distance measure of OWCD is also presented. In terms of the experimental results, our detection scheme overcoming the shortage of two-classification detecting methods can efficiently identify the DDoS attack with various attacking intensity
Keywords :
security of data; telecommunication security; time series; DDoS attack detection; OWCD; distributed denial-of-service; one-way connection density; time serial analysis; Computer crime; Computer hacking; Computer security; Hardware; Helium; Information entropy; Information science; Stability; Time measurement; Web and internet services;
Conference_Titel :
Communication systems, 2006. ICCS 2006. 10th IEEE Singapore International Conference on
Conference_Location :
Singapore
Print_ISBN :
1-4244-0411-8
Electronic_ISBN :
1-4244-0411-8
DOI :
10.1109/ICCS.2006.301419
