用于检测DDos攻击的队列模型

Proceedings of the 2005 International Symposium on Collaborative Technologies and Systems, 2005. Pub Date : 2005-05-15 DOI:10.1109/ISCST.2005.1553301

Shuang Hao, Hua Song, Wenbao Jiang, Yiqi Dai

{"title":"用于检测DDos攻击的队列模型","authors":"Shuang Hao, Hua Song, Wenbao Jiang, Yiqi Dai","doi":"10.1109/ISCST.2005.1553301","DOIUrl":null,"url":null,"abstract":"With the development of network communication and collaboration, distributed denial-of-service (DDos) attack increasingly becomes one of the hardest and most annoying network security problems to address. In this paper, we present a new framework to detect the DDos attacks according to the packet flows of specific protocols. Our aim is to detect the attacks as early as possible and avoid the unnecessary false positive. A Gaussian parametrical mixture model is utilized to estimate the normal behavior and a queue model is adopted for detecting the attacks. Experiments verify that our proposed approach is effective and has reasonable accuracy","PeriodicalId":283620,"journal":{"name":"Proceedings of the 2005 International Symposium on Collaborative Technologies and Systems, 2005.","volume":"38 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2005-05-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"A queue model to detect DDos attacks\",\"authors\":\"Shuang Hao, Hua Song, Wenbao Jiang, Yiqi Dai\",\"doi\":\"10.1109/ISCST.2005.1553301\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"With the development of network communication and collaboration, distributed denial-of-service (DDos) attack increasingly becomes one of the hardest and most annoying network security problems to address. In this paper, we present a new framework to detect the DDos attacks according to the packet flows of specific protocols. Our aim is to detect the attacks as early as possible and avoid the unnecessary false positive. A Gaussian parametrical mixture model is utilized to estimate the normal behavior and a queue model is adopted for detecting the attacks. Experiments verify that our proposed approach is effective and has reasonable accuracy\",\"PeriodicalId\":283620,\"journal\":{\"name\":\"Proceedings of the 2005 International Symposium on Collaborative Technologies and Systems, 2005.\",\"volume\":\"38 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2005-05-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 2005 International Symposium on Collaborative Technologies and Systems, 2005.\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISCST.2005.1553301\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2005 International Symposium on Collaborative Technologies and Systems, 2005.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISCST.2005.1553301","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

摘要

随着网络通信和协作的发展，分布式拒绝服务(DDos)攻击日益成为网络安全中最难解决和最恼人的问题之一。本文提出了一种基于特定协议的数据包流检测DDos攻击的新框架。我们的目标是尽早发现攻击，避免不必要的误报。采用高斯参数混合模型估计正常行为，采用队列模型检测攻击。实验验证了该方法的有效性和合理的精度

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A queue model to detect DDos attacks

With the development of network communication and collaboration, distributed denial-of-service (DDos) attack increasingly becomes one of the hardest and most annoying network security problems to address. In this paper, we present a new framework to detect the DDos attacks according to the packet flows of specific protocols. Our aim is to detect the attacks as early as possible and avoid the unnecessary false positive. A Gaussian parametrical mixture model is utilized to estimate the normal behavior and a queue model is adopted for detecting the attacks. Experiments verify that our proposed approach is effective and has reasonable accuracy

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 2005 International Symposium on Collaborative Technologies and Systems, 2005.

自引率

0.00%

发文量