Information metrics for low-rate DDoS attack detection: A comparative evaluation

机译：低速率DDoS攻击检测的信息指标：比较评估

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Invasion by Distributed Denial of Service (DDoS) is a serious threat to services offered on the Internet. A low-rate DDoS attack allows legitimate network traffic to pass and consumes low bandwidth. So, detection of this type of attacks is very difficult in high speed networks. Information theory is popular because it allows quantifications of the difference between malicious traffic and legitimate traffic based on probability distributions. In this paper, we empirically evaluate several information metrics, namely, Hartley entropy, Shannon entropy, Renyi's entropy and Generalized entropy in their ability to detect low-rate DDoS attacks. These metrics can be used to describe characteristics of network traffic and an appropriate metric facilitates building an effective model to detect low-rate DDoS attacks. We use MIT Lincoln Laboratory and CAIDA DDoS datasets to illustrate the efficiency and effectiveness of each metric for detecting mainly low-rate DDoS attacks.

机译：分布式拒绝服务（DDoS）的入侵是对Internet上提供的服务的严重威胁。低速率DDoS攻击允许合法的网络流量通过并消耗低带宽。因此，在高速网络中检测此类攻击非常困难。信息论之所以流行，是因为它允许根据概率分布来量化恶意流量和合法流量之间的差异。在本文中，我们根据经验评估了几种信息量度，即Hartley熵，Shannon熵，Renyi熵和广义熵在检测低速率DDoS攻击方面的能力。这些指标可用于描述网络流量的特征，适当的指标可帮助构建有效的模型以检测低速率DDoS攻击。我们使用麻省理工学院的林肯实验室和CAIDA DDoS数据集来说明每种检测主要是低速率DDoS攻击的指标的效率和有效性。

著录项

来源
《International Conference on Contemporary Computing》|2014年|80-84|共5页
会议地点
作者
Bhuyan Monowar H.; Bhattacharyya D.K.; Kalita J.K.;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Computer crime; Entropy; Floods; Information entropy; Measurement; Probability distribution; Telecommunication traffic; DDoS attack; entropy; information metric; low-rate; network traffic;

机译：计算机犯罪;熵;洪水;信息熵;测量;概率分布;电信业务; DDoS攻击;熵;信息指标;低比率;网络流量;

相似文献

外文文献
中文文献
专利

1. An empirical evaluation of information metrics for low-rate and high-rate DDoS attack detection [J] . Monowar H. Bhuyan, D.K. Bhattacharyya, J.K. Kalita Pattern recognition letters . 2015,第jana1期

机译：对低速率和高速率DDoS攻击检测的信息指标的经验评估
2. Low-Rate DDoS Attacks Detection and Traceback by Using New Information Metrics [J] . Xiang Y., Li K., Zhou W. Information Forensics and Security, IEEE Transactions on . 2011,第2期

机译：使用新的信息指标进行低速率DDoS攻击检测和追溯
3. A new metric for flow-level filtering of low-rate DDoS attacks [J] . Simsek Mehmet Security and Communications Networks . 2015,第18期

机译：低速率DDoS攻击的流级别过滤的新指标
4. Information metrics for low-rate DDoS attack detection: A comparative evaluation [C] . Bhuyan Monowar H., Bhattacharyya D.K., Kalita J.K. International Conference on Contemporary Computing . 2014

机译：低速率DDOS攻击检测信息指标：比较评估
5. Detection and Explanation of Distributed Denial of Service (DDoS) Attack Through Interpretable Machine Learning [D] . Das, Saikat. 2021

机译：通过可解释机学习的分布式拒绝服务（DDOS）攻击的检测与解释
6. Low-Rate DoS Attacks Detection Based on MAF-ADM [O] . Sijia Zhan, Dan Tang, Jianping Man, 2020

机译：基于MAF-ADM的低速率DoS攻击检测
7. Detection of the botnets’ low-rate DDoS attacks based on self-similarity [O] . Sergii Lysenko, Kira Bobrovnikova, Serhii Matiukh, 2020

机译：基于自相似性检测僵尸网络的低速率DDOS攻击

Information metrics for low-rate DDoS attack detection: A comparative evaluation

摘要

著录项

相似文献

相关主题

期刊订阅