• DocumentCode
    2757651
  • Title

    Non-negative Increment Feature Detection of the Traffic Throughput for Early DDoS Attack

  • Author

    Huang, Ying ; Sun, Huizhong ; Chao, H. Jonathan ; Chao, Xiong

  • Author_Institution
    Dept. of CE, China Univ. of Geosci., Wuhan
  • fYear
    2007
  • fDate
    16-18 Dec. 2007
  • Firstpage
    121
  • Lastpage
    126
  • Abstract
    One of the major threats to cyber security is distributed denial of service (DDoS) attacks. In this paper, we reveal the non-negative and cumulative increment effect of DDoS traffic throughput that is the feature accurately distinguished DDoS attacking traffic from normal flash crowd traffic. Our scheme can detect a DDoS attack in its early stages based on these feature. It can differentiate DDoS from flash crowd traffic effectively even if DDoS is potential. This scheme detects DDoS attacks with on-line and distributed characteristics. Simulation shows the algorithm´s validity and accuracy.
  • Keywords
    security of data; telecommunication security; telecommunication traffic; cyber security; distributed denial of service attacks; early DDoS attack; nonnegative increment feature detection; traffic throughput; Chaos; Computer crime; Computer security; Computer vision; Covariance matrix; Geology; Internet; Sun; Throughput; Traffic control; DDoS Detection; feature; traffic throughput;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Signal-Image Technologies and Internet-Based System, 2007. SITIS '07. Third International IEEE Conference on
  • Conference_Location
    Shanghai
  • Print_ISBN
    978-0-7695-3122-9
  • Type

    conf

  • DOI
    10.1109/SITIS.2007.122
  • Filename
    4618767
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2757651