Title :
A framework for countering denial of service attacks
Author :
Mukkamala, Srinivas ; Sung, Andrew A.
Author_Institution :
Dept. of Comput. Sci., New Mexico Tech., Socorro, NM, USA
Abstract :
Recent trend of the adversaries "if I can\´t have it, nobody can" has changed the emphasis of information assurance with respect to information availability. This paper presents a knowledge discovery framework to detect DoS attacks at the boundary controllers (routers). The idea is to use machine learning approach to discover network features that can depict the state of the network connection. Using important network data (DoS relevant features), we have developed kernel machine based and soft computing detection mechanisms that achieve high detection accuracies. We also present our work of identifying DoS pertinent features and evaluating the applicability of these features in detecting novel DoS attacks. Architecture for detecting DoS attacks at the router is presented. We demonstrate that highly efficient and accurate signature based classifiers can be constructed by using important network features and machine learning techniques to detect DoS attacks at the boundary controllers.
Keywords :
data mining; learning (artificial intelligence); security of data; telecommunication network routing; uncertainty handling; denial of service attacks; information availability; knowledge discovery; machine learning; routers; soft computing detection mechanism; Availability; Computer architecture; Computer crime; Computer networks; Computer science; Computer vision; Information systems; Internet; Intrusion detection; Machine learning;
Conference_Titel :
Systems, Man and Cybernetics, 2004 IEEE International Conference on
Print_ISBN :
0-7803-8566-7
DOI :
10.1109/ICSMC.2004.1400845
