Accurately Identifying New QoS Violation Driven by High-Distributed Low-Rate Denial of Service Attacks Based on Multiple Observed Features

Kang Jian; Yang Mei; Zhang Junyao

首页> 外文期刊>Journal of Sensors >Accurately Identifying New QoS Violation Driven by High-Distributed Low-Rate Denial of Service Attacks Based on Multiple Observed Features

【24h】

Accurately Identifying New QoS Violation Driven by High-Distributed Low-Rate Denial of Service Attacks Based on Multiple Observed Features

机译：基于多个观察到的特征，准确识别由高分布式低速率拒绝服务攻击导致的新QoS违规

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

We propose using multiple observed features of network traffic to identify new high-distributed low-rate quality of services (QoS) violation so that detection accuracy may be further improved. For the multiple observed features, we choose F feature in TCP packet header as a microscopic feature and, P feature and D feature of network traffic as macroscopic features. Based on these features, we establish multistream fused hidden Markov model (MF-HMM) to detect stealthy low-rate denial of service (LDoS) attacks hidden in legitimate network background traffic. In addition, the threshold value is dynamically adjusted by using Kaufman algorithm. Our experiments show that the additive effect of combining multiple features effectively reduces the false-positive rate. The average detection rate of MF-HMM results in a significant 23.39% and 44.64% improvement over typical power spectrum density (PSD) algorithm and nonparametric cumulative sum (CUSUM) algorithm.

机译：我们建议使用网络流量的多个观察到的特征来识别新的高分布低速率服务质量（QoS）违规，从而可以进一步提高检测精度。对于观察到的多个特征，我们选择TCP数据包报头中的F特征作为微观特征，选择P业务和D网络流量特征作为宏观特征。基于这些功能，我们建立了多流融合隐藏马尔可夫模型（MF-HMM），以检测隐藏在合法网络后台流量中的隐形低速率拒绝服务（LDoS）攻击。另外，通过使用考夫曼算法来动态调整阈值。我们的实验表明，组合多个特征的累加效果可有效降低假阳性率。与典型的功率谱密度（PSD）算法和非参数累积和（CUSUM）算法相比，MF-HMM的平均检测率显着提高了23.39％和44.64％。

著录项

来源
《Journal of Sensors》 |2015年第3期|共11页
作者
Kang Jian; Yang Mei; Zhang Junyao;
展开▼
作者单位

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类 TP212;
关键词

相似文献

外文文献
中文文献
专利

1. Accurately Identifying New QoS Violation Driven by High-Distributed Low-Rate Denial of Service Attacks Based on Multiple Observed Features [J] . Kang Jian, Yang Mei, Zhang Junyao Journal of Sensors . 2015,第Pta3期

机译：基于多个观察到的特征，准确识别由高分布式低速率拒绝服务攻击导致的新QoS违规
2. Two-Layer Approach for Mixed High-Rate and Low-Rate Distributed Denial of Service (DDoS) Attack Detection and Filtering [J] . Toklu S., Simsek M. Arabian Journal for Science and Engineering . 2018,第12期

机译：高速和低速分布式拒绝服务（DDoS）混合攻击检测和过滤的两层方法
3. Flow-oriented detection of low-rate denial of service attacks [J] . Wu Zhijun, Hu Ran, Yue Meng International journal of communication systems . 2016,第1期

机译：面向流的低速率拒绝服务攻击检测
4. The detection of low-rate denial-of-service attack based on feature extraction and analysis at congestion times [C] . Yu Feng, Li Gang, Cui Ming 2011 International Conference on Electrical and Control Engineering . 2011

机译：基于特征提取和拥塞时分析的低速拒绝服务攻击检测
5. A novel puzzle-based framework for mitigating distributed denial of service attacks against internet applications [D] . Abliz, Mehmud 2015

机译：一个新颖的基于拼图的框架，用于缓解针对Internet应用程序的分布式拒绝服务攻击
6. A Novel Protective Framework for Defeating HTTP-Based Denial of Service and Distributed Denial of Service Attacks [O] . Mohammed A. Saleh, Azizah Abdul Manaf 2015

机译：一种新颖的保护性框架可克服基于HTTP的拒绝服务攻击和分布式拒绝服务攻击
7. On generalized low-rate Denial-of-Quality attack against internet services [O] . Luo XP, Tang YJ, Chang RKC, 2009

机译：关于针对互联网服务的广义低速率拒绝质量攻击

Accurately Identifying New QoS Violation Driven by High-Distributed Low-Rate Denial of Service Attacks Based on Multiple Observed Features

摘要

著录项

相似文献

相关主题

期刊订阅