A methodology to evaluate rate-based intrusion prevention system against distributed denial-of-service (DDoS).
作者: Jamie Graves , Flavien Flandrin , Richard Macfarlane , William J Buchanan
DOI:
关键词:
摘要: This paper defines a methodology for the evaluation of Rate-based Intrusion Prevention System (IPS) Distributed Denial Service (DDoS) threat. system uses realistic background traffic along with attacking traffic, four different DDoS attacks. The metrics are defined using Snort for: rate packet loss; time to respond; available bandwidth; latency; reliability; CPU loading; and memory usage. results show that is effective in handling low-throughput attack, but when 6 000 pps malicious reached, starts drop legitimate packets, at same loss. It also shows IPS operates well up throughputs 1Mbps.
napier.ac.uk
researchgate.net 参考文章(76)
Owen Lo, Jamie Graves, Beng (Hons), Framework for Evaluation of Network-Based Intrusion Detection System ,(2010)
Pars Mutaf, Defending against a Denial-of-Service Attack on TCP. recent advances in intrusion detection. ,(1999)
Jeffrey C. Mogul, Simple and Flexible Datagram Access Controls for UNIX-based Gateways ,(1999)
Natalia Stakhanova, Christopher Roy Strasburg, Samik Basu, Johnny S. Wong, The Methodology for Evaluating Response Cost for Intrusion Response Systems ,(2008)
Marcus J. Ranum, Experiences Benchmarking Intrusion Detection Systems ,(2002)
Julien Corsini, Analysis and evaluation of network intrusion detection methods to uncover data theft Edinburgh Napier University. ,(2009)
Tracy Cox, Martin Sprouse, Sabotage in the American Workplace: Anecdotes of Dissatisfaction, Mischief, and Revenge ,(1992)
Thomas Wilhelm, David Maynor, Metasploit Toolkit for Penetration Testing, Exploit Development, and Vulnerability Research ,(2007)
Dominique Alessandri, Attack-class-based analysis of intrusion detection systems Newcastle University. ,(2004)
Timothy N. Newsham, Thomas H. Ptacek, Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection ,(1998)