Probabilistic Transition-Based Approach for Detecting Application-Layer DDoS Attacks in Encrypted Software-Defined Networks

机译：基于概率的转换方法检测加密软件定义网络中的应用层DDOS攻击的方法

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

With the emergence of cloud computing, many attacks, including Distributed Denial-of-Service (DDoS) attacks, have changed their direction towards cloud environment. In particular, DDoS attacks have changed in scale, methods, and targets and become more complex by using advantages provided by cloud computing. Modern cloud computing environments can benefit from moving towards Software-Defined Networking (SDN) technology, which allows network engineers and administrators to respond quickly to the changing business requirements. In this paper, we propose an approach for detecting application-layer DDoS attacks in cloud environment with SDN. The algorithm is applied to statistics extracted from network flows and, therefore, is suitable for detecting attacks that utilize encrypted protocols. The proposed detection approach is comprised of the extraction of normal user behavior patterns and detection of anomalies that significantly deviate from these patterns. The algorithm is evaluated using DDoS detection system prototype. Simulation results show that intermediate application-layer DDoS attacks can be properly detected, while the number of false alarms remains low.

机译：随着云计算的出现，许多攻击，包括分布式拒绝服务（DDOS）攻击，已经改变了他们对云环境的方向。特别是，DDOS攻击在规模，方法和目标中改变，并通过使用云计算提供的优点变得更加复杂。现代云计算环境可以从朝向软件定义的网络（SDN）技术方面受益，这允许网络工程师和管理员快速响应不断变化的业务需求。在本文中，我们提出了一种用SDN检测云环境中的应用层DDOS攻击的方法。该算法应用于从网络流提取的统计信息，因此适用于检测利用加密协议的攻击。所提出的检测方法包括提取正常用户行为模式和检测的异常，其显着偏离这些图案。使用DDOS检测系统原型进行评估该算法。仿真结果表明，可以正确检测中间应用层DDOS攻击，而误报的数量仍然很低。

著录项

来源
《International Conference on Network and System Security》|2017年|762p|共13页
会议地点
作者
Elena Ivannikova; Mikhail Zolotukhin; Timo Hamalainen;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP393-53;
关键词
DDoS attack; Anomaly detection; SDN; Clustering; Behavior pattern; Probabilistic model;

机译：DDOS攻击;异常检测;SDN;聚类;行为模式;概率模型;

相似文献

外文文献
中文文献
专利

1. LION IDS: A meta-heuristics approach to detect DDoS attacks against Software-Defined Networks [J] . Arivudainambi D., Kumar Varun K. A., Chakkaravarthy S. Sibi Neural computing & applications . 2019,第5期

机译：狮子ID：一种荟萃启发式方法，用于检测软件定义网络的DDOS攻击
2. A two level security mechanism to detect a DDoS flooding attack in software-defined networks using entropy-based and C4.5 technique [J] . Sudar K. Muthamil, Deepalakshmi P. Journal of High Speed Networks . 2020,第1期

机译：使用基于熵和C4.5技术检测软件定义网络中DDOS泛洪攻击的两个级别安全机制
3. Detecting DDoS Attacks in Software-Defined Networks Through Feature Selection Methods and Machine Learning Models [J] . International journal of applied mechanics . 2020,第3期

机译：通过特征选择方法和机器学习模型检测软件定义网络中的DDOS攻击
4. Probabilistic Transition-Based Approach for Detecting Application-Layer DDoS Attacks in Encrypted Software-Defined Networks [C] . Elena Ivannikova, Mikhail Zolotukhin, Timo Hamalainen International conference on network and system security . 2017

机译：基于概率转移的加密软件定义网络中应用层DDoS攻击检测方法
5. DDoS attacks: Detecting attacks and defending the network [D] . Heinrich, Robert 2015

机译：DDoS攻击：检测攻击并防御网络
6. Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks [O] . Waleed Nazih, Yasser Hifny, Wail S. Elkilani, 2020

机译：使用经常性神经网络对基于SIP的VoIP网络进行反击DDOS攻击
7. Probabilistic Transition-Based Approach for Detecting Application-Layer DDoS Attacks in Encrypted Software-Defined Networks [O] . Ivannikova, Elena, Zolotukhin, Mikhail, Hämäläinen, Timo 2017

机译：基于概率转移的加密软件定义网络中应用层DDoS攻击检测方法

Probabilistic Transition-Based Approach for Detecting Application-Layer DDoS Attacks in Encrypted Software-Defined Networks

摘要

著录项

相似文献

相关主题

期刊订阅