• DocumentCode
    3730684
  • Title

    Implementation of anomaly detection algorithms for detecting Transmission Control Protocol Synchronized flooding attacks

  • Author

    Nenekazi N. P. Mkuzangwe;Andre McDonald;Fulufhelo V. Nelwamondo

  • Author_Institution
    Modelling and Digital Science, Council for Scientific and Industrial Research, Pretoria, South Africa
  • fYear
    2015
  • Firstpage
    2137
  • Lastpage
    2141
  • Abstract
    This work implements two anomaly detection algorithms for detecting Transmission Control Protocol Synchronized (TCP SYN) flooding attack. The two algorithms are an adaptive threshold algorithm and a cumulative sum (CUSUM) based algorithm. Furthermore, we fused the outcomes of the two algorithms using the logic OR operator at different thresholds of the two algorithms to obtain improved detection accuracy. Indeed, the results indicated that the OR operator performs better than the two algorithms in detecting SYN flooding attack and detection delay.
  • Keywords
    "Floods","Sensor fusion","Detection algorithms","Servers","Time measurement","Protocols"
  • Publisher
    ieee
  • Conference_Titel
    Fuzzy Systems and Knowledge Discovery (FSKD), 2015 12th International Conference on
  • Type

    conf

  • DOI
    10.1109/FSKD.2015.7382282
  • Filename
    7382282
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3730684