Combining Cross-Correlation and Fuzzy Classification to Detect Distributed Denial-of-Service Attacks

机译：将互相关和模糊分类相结合以检测分布式拒绝服务攻击

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

In legitimate traffic the correlation exists between the outgoing traffic and incoming traffic of a server network because of the request-reply actions in most protocols. When DDoS attacks occur, the attackers send packets with faked source addresses. As a result, the outgoing traffic to the faked addresses does not induce any related incoming traffic. Our main idea is to find changes in the correlation caused by DDoS. We sample network traffics using Extended First Connection Density (EFCD), and express correlation by cross-correlation function. Because network traffic in DDoS-initiating stage is much similar to legitimate traffic, we use fuzzy classification in order to guarantee the accuracy. Experiments show that DDoS traffic can be identified accurately by our algorithm.

机译：在合法流量中，由于大多数协议中的请求-响应操作，在服务器网络的传出流量和传入流量之间存在相关性。发生DDoS攻击时，攻击者发送带有伪造源地址的数据包。结果，到伪造地址的传出流量不会引起任何相关的传入流量。我们的主要思想是发现由DDoS引起的相关性变化。我们使用扩展的首次连接密度（EFCD）对网络流量进行采样，并通过互相关函数表达相关性。由于DDoS发起阶段的网络流量与合法流量非常相似，因此我们使用模糊分类来保证准确性。实验表明，我们的算法可以准确识别DDoS流量。

著录项

来源
《International Conference on Computational Science(ICCS 2006) pt.4; 20060528-31; Reading(GB)》|2006年|P.57-64|共8页
会议地点 Reading(GB)
作者
Wei Wei; Yabo Dong; Dongming Lu; Guang Jin;
展开▼
作者单位

College of Compute Science and Technology, Zhejiang University, Hangzhou 310027, P.R. China;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类计算技术、计算机技术;
关键词

相似文献

外文文献
中文文献
专利

1. Applying domain-specific knowledge to construct features for detecting distributed denial-of-service attacks on the GOOSE and MMS protocols [J] . Lahza Hassan, Radke Kenneth, Foo Ernest International Journal on Critical Infrastructure Protection . 2018,第MARa期

机译：应用特定领域的知识来构建用于检测GOOSE和MMS协议上的分布式拒绝服务攻击的功能
2. Detecting Distributed Denial-of-Service Attacks Using Kolmogorov Complexity Metrics [J] . Amit Kulkarni, Stephen Bush Journal of network and systems management . 2006,第1期

机译：使用Kolmogorov复杂度指标检测分布式拒绝服务攻击
3. Detecting Distributed Denial-of-Service Attacks by Analyzing TCP SYN Packets Statistically [J] . Yuichi OHSITA, Shingo ATA, Masayuki MURATA IEICE Transactions on Communications . 2006,第10期

机译：通过统计分析TCP SYN数据包检测分布式拒绝服务攻击
4. Combining Cross-Correlation and Fuzzy Classification to Detect Distributed Denial-of-Service Attacks [C] . Wei Wei, Yabo Dong, Dongming Lu, International Conference on Computational Science pt.4 . 2006

机译：结合互相关和模糊分类来检测分布式拒绝服务攻击
5. On tracing attackers of distributed denial-of-service attack through distributed approaches [D] . Wong, Tsz Yeung. 2007

机译：通过分布式方法跟踪分布式拒绝服务攻击的攻击者
6. Detecting gene-gene interactions for complex quantitative traits using generalized fuzzy classification [O] . Xiangdong Zhou, Keith C. C. Chan 2018

机译：使用广义模糊分类检测复杂数量性状的基因-基因相互作用
7. Applying domain-specific knowledge to construct features for detecting distributed denial-of-service attacks on the GOOSE and MMS protocols [O] . Hassan Lahza, Kenneth Radke, Ernest Foo 2018

机译：应用域特定知识来构建用于检测鹅和MMS协议的分布式拒绝服务攻击的功能

Combining Cross-Correlation and Fuzzy Classification to Detect Distributed Denial-of-Service Attacks

摘要

著录项

相似文献

相关主题

期刊订阅