DiCoTraM: A distributed and coordinated DDoS flooding attack tailored traffic monitoring
作者: Saman Taghavi Zargar , James Joshi , David Tipper
关键词:
摘要: The success in detecting Distributed Denial of Service (DDoS) flooding attacks is highly dependent on the quality and quantity covered flows by traffic monitoring mechanism that employed any DDoS defense mechanism. In this paper, we propose DiCoTraM, a attack tailored distributed coordinated centrally periodically coordinates responsibilities distributes them among all devices within each autonomous system (AS) while satisfying devices' memory constraints. DiCoTraM monitors such way intended for same destination (possible network/transport level flows) are analyzed together device if there enough to cover those device; hence, can enable detection mechanisms place analyze monitored flows. enabled leads reduced communication overhead problem centralized as they need collect analysis. Moreover, coordination structure eliminates redundant flow routers. We simulate compare with other terms of: overall coverage, coverage. experimental results show compared mechanisms, covers more it has reasonable
sci-hub.se 参考文章(18)
Karel Bartos, Martin Rehak, Towards efficient flow sampling technique for anomaly detection traffic monitoring and analysis. pp. 93- 106 ,(2012) , 10.1007/978-3-642-28534-9_11
Ramana Rao Kompella, Walter Willinger, David G. Andersen, Michael K. Reiter, Vyas Sekar, Hui Zhang, CSAMP: a system for network-wide flow monitoring networked systems design and implementation. pp. 233- 246 ,(2008)
Manish R. Sharma, John W. Byers, Scalable Coordination Techniques for Distributed Network Monitoring Lecture Notes in Computer Science. pp. 349- 352 ,(2005) , 10.1007/978-3-540-31966-5_32
Aman Shaikh, Albert Greenberg, OSPF monitoring: architecture, design and deployment experience networked systems design and implementation. pp. 5- 5 ,(2004)
J. Hawkinson, T. Bates, Guidelines for creation, selection, and registration of an Autonomous System (AS) RFC. ,vol. 1930, pp. 1- 10 ,(1996)
Abhishek Kumar, Minho Sung, Jun (Jim) Xu, Jia Wang, Data streaming algorithms for efficient and accurate estimation of flow size distribution Proceedings of the joint international conference on Measurement and modeling of computer systems - SIGMETRICS 2004/PERFORMANCE 2004. ,vol. 32, pp. 177- 188 ,(2004) , 10.1145/1005686.1005709
Michael R. Garey, David S. Johnson, Computers and Intractability: A Guide to the Theory of NP-Completeness ,(1979)
Bingdong Li, Jeff Springer, George Bebis, Mehmet Hadi Gunes, Review: A survey of network flow applications Journal of Network and Computer Applications. ,vol. 36, pp. 567- 581 ,(2013) , 10.1016/J.JNCA.2012.12.020
Saman Taghavi Zargar, James B.D. Joshi, A collaborative approach to facilitate intrusion detection and response against DDoS attacks. collaborative computing. pp. 1- 8 ,(2010) , 10.4108/ICST.COLLABORATECOM.2010.46
Marco Canini, Damien Fay, David J. Miller, Andrew W. Moore, Raffaele Bolla, Per flow packet sampling for high-speed network monitoring communication systems and networks. pp. 463- 472 ,(2009) , 10.1109/COMSNETS.2009.4808888