Detection of smurf flooding attacks using Kullback-Leibler-based scheme

机译：使用基于Kullback-Leibler的方案检测蓝精灵泛洪攻击

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Reliable and timely detection of cyber attacks become indispensable to protect networks and systems. Internet control message protocol (ICMP) flood attacks are still one of the most challenging threats in both IPv4 and IPv6 networks. This paper proposed an approach based on Kullback-Leibler divergence (KLD) to detect ICMP-based Denial Of service (DOS) and Distributed Denial Of Service (DDOS) flooding attacks. This is motivated by the high capacity of KLD to quantitatively discriminate between two distributions. Here, the three-sigma rule is applied to the KLD distances for anomaly detection. We evaluated the effectiveness of this scheme by using the 1999 DARPA Intrusion Detection Evaluation Datasets.

机译：可靠，及时地检测网络攻击对于保护网络和系统变得不可或缺。 Internet控制消息协议（ICMP）洪水攻击仍然是IPv4和IPv6网络中最具挑战性的威胁之一。本文提出了一种基于Kullback-Leibler散度（KLD）的方法来检测基于ICMP的拒绝服务（DOS）和分布式拒绝服务（DDOS）泛洪攻击。 KLD具有在两个分布之间进行定量区分的强大能力，这促使了这一点。在此，将三西格玛规则应用于KLD距离以进行异常检测。我们使用1999 DARPA入侵检测评估数据集评估了该方案的有效性。

著录项

来源
《2018 4th International Conference on Computer and Technology Applications》|2018年|11-15|共5页
会议地点 Istanbul(TR)
作者
Benamar Bouyeddou; Fouzi Harrou; Ying Sun; Benamar Kadri;
展开▼
作者单位

STIC Lab., Department of Telecommunications, Abou Bekr Belkaid University, Tlemcen, Algeria;

King Abdullah University of Science and Technology, CEMSE Division, Thuwal, 23955-6900, Saudi Arabia;

King Abdullah University of Science and Technology, CEMSE Division, Thuwal, 23955-6900, Saudi Arabia;

STIC Lab., Department of Telecommunications, Abou Bekr Belkaid University, Tlemcen, Algeria;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
Computer crime; IP networks; Intrusion detection; Measurement; Anomaly detection; Routing protocols;

机译：计算机犯罪; IP网络;入侵检测;测量;异常检测;路由协议;;

相似文献

外文文献
中文文献
专利

1. Traceroute-based target link flooding attack detection scheme by analyzing hop count to the destination [J] . Hiromu Asahina, Kei Sakuma, Shuichiro Haruta, IEICE Communications Express . 2019,第7期

机译：通过分析到目的地的跳数，基于Traceroute的目标链路洪泛攻击检测方案
2. Traceroute based Target Link Flooding Attack Detection Scheme by Analyzing Hop Count to the Destination [J] . Kei SAKUMA, Hiromu ASAHINA, Shuichiro HARUTA, 電子情報通信学会技術研究報告. 通信方式. Communication Systems . 2017,第309期

机译：基于Traceroute的目标链路泛洪攻击检测方案通过分析到目的地
3. DDoS flooding attack detection scheme based on F-divergence [J] . Hamza Rahmani, Nabil Sahli, Farouk Kamoun Computer Communications . 2012,第11期

机译：基于F散度的DDoS泛洪攻击检测方案
4. Detection of smurf flooding attacks using Kullback-Leibler-based scheme [C] . Benamar Bouyeddou, Fouzi Harrou, Ying Sun, International Conference on Computer and Technology Applications . 2018

机译：使用基于Kullback-Leibler的方案检测Smurf洪水攻击
5. Detection and Mitigation against SYN Flood Attack Using Network Function Virtualization [D] . Alharbi, Talal Raji. 2020

机译：使用网络功能虚拟化对SYN泛洪攻击的检测与缓解
6. A Privacy-Preserving Key Management Scheme with Support for Sybil Attack Detection in VANETs [O] . L. Ellen Funderburg, Im-Yeong Lee 2021

机译：一种隐私保留关键管理方案支持vanets中的Sybil攻击检测
7. Traceroute-based target link flooding attack detection scheme by analyzing hop count to the destination [O] . Hiromu Asahina, Kei Sakuma, Shuichiro Haruta, 2019

机译：基于Traceroute的目标链路泛滥攻击检测方案通过分析到目的地

Detection of smurf flooding attacks using Kullback-Leibler-based scheme

摘要

著录项

相似文献

相关主题

期刊订阅