多尺度分析从源头检测DDoS攻击

2014 16th International Telecommunications Network Strategy and Planning Symposium (Networks) Pub Date : 2014-11-20 DOI:10.1109/NETWKS.2014.6959267

Ivo Petiz, P. Salvador, A. Nogueira, Eduardo Rocha

{"title":"多尺度分析从源头检测DDoS攻击","authors":"Ivo Petiz, P. Salvador, A. Nogueira, Eduardo Rocha","doi":"10.1109/NETWKS.2014.6959267","DOIUrl":null,"url":null,"abstract":"The proliferation of Distributed Denial of Service (DDoS) attacks is a constant threat to business and individuals. Existing systems proved to be inefficient when deploying counter-measures at the target of the attacks. In fact, efficient counteractions should be applied at the networks that contain the sources of the attack. However, the detection of such type of attacks at the source is extremely difficult. In this work, we propose a novel and more efficient methodology to detect DDoS attacks at the source that relies on the inherent periodicity of the traffic generated by DDoS attack sources. Detecting and quantifying the traffic periodic components using multiscaling traffic analysis based on wavelet scalograms allows an efficient detection of DDoS attacks at the source, even when the attacks are performed using encrypted channels or are embedded within licit traffic.","PeriodicalId":410892,"journal":{"name":"2014 16th International Telecommunications Network Strategy and Planning Symposium (Networks)","volume":"12 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-11-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"Detecting DDoS attacks at the source using multiscaling analysis\",\"authors\":\"Ivo Petiz, P. Salvador, A. Nogueira, Eduardo Rocha\",\"doi\":\"10.1109/NETWKS.2014.6959267\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The proliferation of Distributed Denial of Service (DDoS) attacks is a constant threat to business and individuals. Existing systems proved to be inefficient when deploying counter-measures at the target of the attacks. In fact, efficient counteractions should be applied at the networks that contain the sources of the attack. However, the detection of such type of attacks at the source is extremely difficult. In this work, we propose a novel and more efficient methodology to detect DDoS attacks at the source that relies on the inherent periodicity of the traffic generated by DDoS attack sources. Detecting and quantifying the traffic periodic components using multiscaling traffic analysis based on wavelet scalograms allows an efficient detection of DDoS attacks at the source, even when the attacks are performed using encrypted channels or are embedded within licit traffic.\",\"PeriodicalId\":410892,\"journal\":{\"name\":\"2014 16th International Telecommunications Network Strategy and Planning Symposium (Networks)\",\"volume\":\"12 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2014-11-20\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2014 16th International Telecommunications Network Strategy and Planning Symposium (Networks)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/NETWKS.2014.6959267\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 16th International Telecommunications Network Strategy and Planning Symposium (Networks)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/NETWKS.2014.6959267","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

摘要

分布式拒绝服务(DDoS)攻击的激增对企业和个人构成了持续的威胁。在针对攻击目标部署反制措施时，现有系统被证明效率低下。事实上，应该在包含攻击源的网络上应用有效的对抗措施。然而，从源头上发现这类攻击是极其困难的。在这项工作中，我们提出了一种新颖且更有效的方法来检测DDoS攻击的源头，该方法依赖于DDoS攻击源产生的流量的固有周期性。使用基于小波尺度图的多尺度流量分析来检测和量化流量周期组件，可以从源头上有效地检测DDoS攻击，即使攻击是使用加密通道执行的或嵌入在合法流量中。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Detecting DDoS attacks at the source using multiscaling analysis

The proliferation of Distributed Denial of Service (DDoS) attacks is a constant threat to business and individuals. Existing systems proved to be inefficient when deploying counter-measures at the target of the attacks. In fact, efficient counteractions should be applied at the networks that contain the sources of the attack. However, the detection of such type of attacks at the source is extremely difficult. In this work, we propose a novel and more efficient methodology to detect DDoS attacks at the source that relies on the inherent periodicity of the traffic generated by DDoS attack sources. Detecting and quantifying the traffic periodic components using multiscaling traffic analysis based on wavelet scalograms allows an efficient detection of DDoS attacks at the source, even when the attacks are performed using encrypted channels or are embedded within licit traffic.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2014 16th International Telecommunications Network Strategy and Planning Symposium (Networks)

自引率

0.00%

发文量