A Cluster-based Approach Towards Detecting and Modeling Network Dictionary Attacks | Zendy

Aliakbar Tajari Siahmarzkooh | Zendy; Jaber Karimpour | Zendy; Shahriar Lotfi | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

A Cluster-based Approach Towards Detecting and Modeling Network Dictionary Attacks

Author(s) -

Aliakbar Tajari Siahmarzkooh,

Jaber Karimpour,

Shahriar Lotfi

Publication year - 2016

Publication title -

engineering technology and applied science research

Language(s) - English

Resource type - Journals

eISSN - 2241-4487

pISSN - 1792-8036

DOI - 10.48084/etasr.937

Subject(s) - computer science , network packet , set (abstract data type) , data mining , hidden markov model , markov chain , cluster (spacecraft) , data set , cluster analysis , artificial intelligence , machine learning , computer network , programming language

In this paper, we provide an approach to detect network dictionary attacks using a data set collected as flows based on which a clustered graph is resulted. These flows provide an aggregated view of the network traffic in which the exchanged packets in the network are considered so that more internally connected nodes would be clustered. We show that dictionary attacks could be detected through some parameters namely the number and the weight of clusters in time series and their evolution over the time. Additionally, the Markov model based on the average weight of clusters,will be also created. Finally, by means of our suggested model, we demonstrate that artificial clusters of the flows are created for normal and malicious traffic. The results of the proposed approach on CAIDA 2007 data set suggest a high accuracy for the model and, therefore, it provides a proper method for detecting the dictionary attack.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research