首页> 外文会议>International Conference on Networks >FVBA: A combined statistical approach for low rate degrading and high bandwidth disruptive DDoS attacks detection in ISP domain

【24h】

FVBA: A combined statistical approach for low rate degrading and high bandwidth disruptive DDoS attacks detection in ISP domain

机译：FVBA：ISP域中低速率降级和高带宽中断DDOS攻击检测的组合统计方法

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Distributed Denial of Service (DDoS) attack is one of the latest and most powerful threats that have appeared to the Internet. The main aim of such attacks is to prevent access to resources by legitimate users for which they have authorization. In this paper, a novel Flow-Volume based DDoS detection approach (FVBA) is proposed, which deals with detection of variety of DDoS attacks by monitoring the propagation of abrupt traffic changes inside ISP Domain. Two statistical measures namely Volume and Flow are used as parameters to detect DDoS attacks. NS-2 network simulator on Linux platform is used as simulation testbed. Different attack scenarios are implemented by varying total number of zombie machines and at different attack strengths to measure effectiveness of proposed approach. Our simulation results show that FVBA inflicts an extremely high detection rate with low false alarm rate.

机译：分布式拒绝服务（DDOS）攻击是互联网出现的最新和最强大的威胁之一。这种攻击的主要目的是通过合法用户来防止他们有授权的合法用户获得资源。本文提出了一种新颖的基于流量的DDOS检测方法（FVBA），该方法通过监视ISP域内的突然流量变化的传播来检测各种DDOS攻击。两个统计措施即卷和流量用作检测DDOS攻击的参数。 NS-2 Linux平台上的网络模拟器用作仿真测试平板。通过改变僵尸机的总数和不同的攻击优势来实现不同的攻击情景以衡量建议方法的有效性。我们的仿真结果表明，FVBA以低误报率造成极高的检测率。

著录项

来源
《International Conference on Networks》|2008年||共4页
会议地点
作者
Gupta B. B.; Misra Manoj; Joshi R. C.;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP393-53;
关键词
Distributed Denial-of-Service (DDoS); False Negatives; False Positives; Network Security;

机译：分布式拒绝服务（DDOS）;假阴性;误报;网络安全;

相似文献

外文文献
中文文献
专利

1. Deciding optimal entropic thresholds to calibrate the detection mechanism for variable rate DDoS attacks in ISP domain: honeypot based approach [J] . Anjali Sardana, R. C. Joshi, Tai-hoon Kim, Journal of Intelligent Manufacturing . 2010,第5期

机译：确定最佳熵阈值以校准ISP域中可变速率DDoS攻击的检测机制：基于蜜罐的方法
2. Deciding optimal entropic thresholds to calibrate the detection mechanism for variable rate DDoS attacks in ISP domain: honeypot based approach [J] . Anjali Sardana, R. C. Joshi, Tai-hoon Kim, Journal of Intelligent Manufacturing . 2010,第5期

机译：确定最佳熵阈值以校准ISP域中可变速率DDoS攻击的检测机制：基于蜜罐的方法
3. Two-Layer Approach for Mixed High-Rate and Low-Rate Distributed Denial of Service (DDoS) Attack Detection and Filtering [J] . Toklu S., Simsek M. Arabian Journal for Science and Engineering . 2018,第12期

机译：高速和低速分布式拒绝服务（DDoS）混合攻击检测和过滤的两层方法
4. FVBA: A combined statistical approach for low rate degrading and high bandwidth disruptive DDoS attacks detection in ISP domain [C] . Gupta B. B., Misra Manoj, Joshi R. C. International Conference on Networks . 2008

机译：FVBA：ISP域中低速率降级和高带宽中断DDOS攻击检测的组合统计方法
5. Collaborative detection and filtering of DDOS attacks in ISP core networks. [D] . Chen, Yu. 2006

机译：ISP核心网络中DDOS攻击的协同检测和过滤。
6. Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental Approach [O] . Jesús Galeano-Brajones, Javier Carmona-Murillo, Juan F. Valenzuela-Valdés, 2020

机译：基于物联网的状态SDN中DoS和DDoS攻击的检测和缓解：一种实验方法
7. Recurrent autonomous autoencoder for intelligent DDoS attack mitigation within the ISP domain [O] . Ili Ko, Desmond Chambers, Enda Barrett 2021

机译：ISP域内智能DDOS攻击缓解的经常性自动自动探测器

FVBA: A combined statistical approach for low rate degrading and high bandwidth disruptive DDoS attacks detection in ISP domain

摘要

著录项

相似文献

相关主题

期刊订阅