Distinguishing between FE and DDoS Using Randomness Check
作者: Hyundo Park , Peng Li , Debin Gao , Heejo Lee , Robert H Deng
DOI: 10.1007/978-3-540-85886-7_9
关键词: Application layer DDoS attack 、 Trinoo 、 Randomness 、 Event (computing) 、 Networking hardware 、 Network security 、 Denial-of-service attack 、 Computer security 、 Computer science
摘要: Threads posed by Distributed Denial of Service (DDoS) attacks are becoming more serious day day. Accurately detecting DDoS becomes an important and necessary step in securing a computer network. However, Flash Event (FE), which is created legitimate requests, shares very similar characteristics with many aspects makes it hard to be distinguished from attacks. In this paper, we propose simple yet effective mechanism called FDD (FE Distinguisher) distinguish FE DDoS. To the best our knowledge, first practical that distinguishes Our trace-driven evaluation shows between accurately efficiently utilizing only memory small size, making possible implemented on high-speed networking devices.
elsevier.com
springer.com
smu.edu.sg
researchgate.net 参考文章(19)
Tao Peng, Christopher Leckie, Kotagiri Ramamohanarao, Proactively detecting distributed denial of service attacks using source IP address monitoring Lecture Notes in Computer Science. pp. 771- 782 ,(2004) , 10.1007/978-3-540-24693-0_63
Andrew Rukhin, A Statistical Test Suite for Random and Pseudorandom Number Generators for Cryptographic Applications Special Publication (NIST SP) - 800-22 Rev 1a. ,(2000) , 10.6028/NIST.SP.800-22R1A
Yanxiang He, Wei Chen, Bin Xiao, Detecting SYN Flooding Attacks Near Innocent Side Lecture Notes in Computer Science. pp. 443- 452 ,(2005) , 10.1007/11599463_44
R. Power, CSI/FBI computer crime and security survey Computer Security Journal. ,vol. 17, pp. 20- 51 ,(2001)
L. A. Adamic, Zipf, Power-laws, and Pareto-a ranking tutorial Xerox Palo Alto Research Center. ,(2000)
Geoffrey M. Voelker, Stefan Savage, David Moore, Inferring internet denial-of-service activity usenix security symposium. pp. 2- 2 ,(2001)
Scott Shenker, Martin Casado, Pei Cao, Niels Provos, Aditya Akella, Cookies along trust-boundaries (CAT): accurate and deployable flood protection conference on steps to reducing unwanted traffic on internet. pp. 3- 3 ,(2006)
Jaeyeon Jung, Balachander Krishnamurthy, Michael Rabinovich, Flash crowds and denial of service attacks: characterization and implications for CDNs and web sites the web conference. pp. 293- 304 ,(2002) , 10.1145/511446.511485
George Marsaglia, Liang-Huei Tsay, Matrices and the structure of random number sequences Linear Algebra and its Applications. ,vol. 67, pp. 147- 156 ,(1985) , 10.1016/0024-3795(85)90192-2
Hyundo Park, Heejo Lee, Hyogon Kim, None, Detecting Unknown Worms Using Randomness Check IEICE Transactions on Communications. ,vol. 90, pp. 894- 903 ,(2007) , 10.1093/IETCOM/E90-B.4.894