• DocumentCode
    3391165
  • Title

    Detecting DDOS Attack Based on One-Way Connection Density

  • Author

    Xu, Tu ; He, Da Ke ; Zheng, Yu

  • Author_Institution
    Sch. of Inf. Sci. & Technol., Southwest Jiaotong Univ., Sichuan
  • fYear
    2006
  • fDate
    Oct. 2006
  • Firstpage
    1
  • Lastpage
    5
  • Abstract
    How to find essential features between normal stream and attack stream and identify the distributed denial of service (DDoS) attack online with simple algorithm are two critical issues in detecting DDoS attack which will contribute to identifying DDoS attack with low false positive and low false negative. According to the features of DDoS attack, a conception of one-way connection density (OWCD) and time serial analysis on OWCD are proposed in this paper. Then a DDoS detecting algorithm based on the mechanism of distance measure of OWCD is also presented. In terms of the experimental results, our detection scheme overcoming the shortage of two-classification detecting methods can efficiently identify the DDoS attack with various attacking intensity
  • Keywords
    security of data; telecommunication security; time series; DDoS attack detection; OWCD; distributed denial-of-service; one-way connection density; time serial analysis; Computer crime; Computer hacking; Computer security; Hardware; Helium; Information entropy; Information science; Stability; Time measurement; Web and internet services;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Communication systems, 2006. ICCS 2006. 10th IEEE Singapore International Conference on
  • Conference_Location
    Singapore
  • Print_ISBN
    1-4244-0411-8
  • Electronic_ISBN
    1-4244-0411-8
  • Type

    conf

  • DOI
    10.1109/ICCS.2006.301419
  • Filename
    4085714
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3391165