A fast self-similarity matrix-based method for shrew DDoS attack detection

Debojit Boro; Mrinmoy Haloi; Dhruba K Bhattacharyya

首页> 外文期刊>Information systems security >A fast self-similarity matrix-based method for shrew DDoS attack detection

【24h】

A fast self-similarity matrix-based method for shrew DDoS attack detection

机译：基于快速自相似矩阵的matrix DDoS攻击检测方法

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Shrew DDoS attack mainly targets the TCP's retransmission timeout (RTO) mechanism that handles severe cases of congestion and packet losses. This attack is very hard to detect due to its stealthy nature and low-rate in volume which if remained undetected can affect the legitimate TCP flows. In this paper, we propose a fast shrew DDoS attack detection method based on self-similarity matrix (SSM) that measures the self-similarity of network traffic across multiple time scales over a subset of relevant features. The method can detect any presence of shrew attack inline with the incoming traffic samples and thus identify the attack flows. We experimented our method over real-life low-rate datasets for multiple scenarios and the results demonstrate its efficiency both in terms of detection accuracy and speed.

机译：密集型DDoS攻击主要针对TCP的重传超时（RTO）机制，该机制可处理严重的拥塞和数据包丢失情况。由于这种攻击具有隐身性和低速率，因此很难检测到，如果不及时检测，则会影响合法的TCP流量。在本文中，我们提出了一种基于自相似矩阵（SSM）的快速精明DDoS攻击检测方法，该方法可在相关特征的子集上跨多个时间尺度测量网络流量的自相似性。该方法可以检测到与传入流量样本内联的泼妇攻击的存在，从而识别攻击流。我们在多种情况下的真实低速率数据集上对我们的方法进行了实验，结果证明了该方法在检测准确性和速度方面的效率。

著录项

来源
《Information systems security》 |2020年第3期|73-90|共18页
作者
Debojit Boro; Mrinmoy Haloi; Dhruba K Bhattacharyya;
展开▼
作者单位

Department of Computer Science and Engineering Tezpur University Tezpur India;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Low-rate DDoS (LRDDoS) attack; retransmission timeout (RTO); self-similar; self-similarity matrix (SSM); shrew DDoS attack;

机译：低速率DDoS（LRDDoS）攻击;重传超时（RTO）;自相似自相似矩阵（SSM）;进行DDoS攻击;

相似文献

外文文献
中文文献
专利

1. Real-Time Method for DDoS Attacks Detection Based on Self-Similarity and Wavelet Analysis [J] . REN Xunyi, WANG Ruchuan, Qi Zhenghua 电子学报：英文版 . 2008,第001期

机译：基于自相似和小波分析的DDoS攻击实时检测方法
2. Detection of the botnets’ low-rate DDoS attacks based on self-similarity [J] . Sergii Lysenko, Kira Bobrovnikova, Serhii Matiukh, International Journal of Electrical and Computer Engineering . 2020,第4期

机译：基于自相似性检测僵尸网络的低速率DDOS攻击
3. DDoS Attack Detection Method Based on Improved KNN With the Degree of DDoS Attack in Software-Defined Networks [J] . Dong Shi, Sarem Mudar Quality Control, Transactions . 2020,第期

机译：基于改进knn的DDOS攻击检测方法，软件定义网络中DDOS攻击程度
4. An optimized design of reconfigurable PSD accelerator for online shrew DDoS attacks detection [C] . Chen Hao, Chen Yu, Summerville Douglas H., IEEE INFOCOM . 2013

机译：用于在线泼妇DDoS攻击检测的可重构PSD加速器的优化设计
5. An efficient and reliable DDOS attack detection algorithm using a fast entropy computation method [D] . No, Giseop 2009

机译：使用快速熵计算方法的高效可靠的DDOS攻击检测算法
6. DDosTC: A Transformer-Based Network Attack Detection Hybrid Mechanism in SDN [O] . Haomin Wang, Wei Li 2021

机译：DDOSTC：SDN中基于变压器的网络攻击检测混合机制
7. Detection of the botnets’ low-rate DDoS attacks based on self-similarity [O] . Sergii Lysenko, Kira Bobrovnikova, Serhii Matiukh, 2020

机译：基于自相似性检测僵尸网络的低速率DDOS攻击

A fast self-similarity matrix-based method for shrew DDoS attack detection

摘要

著录项

相似文献

相关主题

期刊订阅