Detection of Variations of Local Irregularity of Traffic under DDOS Flood Attack | Zendy

Ming Li | Zendy; Wei Zhao | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

Detection of Variations of Local Irregularity of Traffic under DDOS Flood Attack

Author(s) -

Ming Li,

Wei Zhao

Publication year - 2008

Publication title -

mathematical problems in engineering

Language(s) - English

Resource type - Journals

SCImago Journal Rank - 0.262

H-Index - 62

eISSN - 1026-7077

pISSN - 1024-123X

DOI - 10.1155/2008/475878

Subject(s) - denial of service attack , application layer ddos attack , network packet , flood myth , computer science , computer security , computer network , false alarm , geography , artificial intelligence , the internet , archaeology , world wide web

The aim of distributed denial-of-service (DDOS) flood attacks is to overwhelm the attacked site or to make its service performance deterioration considerably by sending flood packets to the target from the machines distributed all over the world. This is a kind of local behavior of traffic at the protected site because the attacked site can be recovered to its normal service state sooner or later even though it is in reality overwhelmed during attack. From a view of mathematics, it can be taken as a kind of short-range phenomenon in computer networks. In this paper, we use the Hurst parameter (H) to measure the local irregularity or self-similarity of traffic under DDOS flood attack provided that fractional Gaussian noise (fGn) is used as the traffic model. As flood attack packets of DDOS make the H value of arrival traffic vary significantly away from that of traffic normally arriving at the protected site, we discuss a method to statistically detect signs of DDOS flood attacks with predetermined detection probability and false alarm probability.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research