Title :
Non-negative Increment Feature Detection of the Traffic Throughput for Early DDoS Attack
Author :
Huang, Ying ; Sun, Huizhong ; Chao, H. Jonathan ; Chao, Xiong
Author_Institution :
Dept. of CE, China Univ. of Geosci., Wuhan
Abstract :
One of the major threats to cyber security is distributed denial of service (DDoS) attacks. In this paper, we reveal the non-negative and cumulative increment effect of DDoS traffic throughput that is the feature accurately distinguished DDoS attacking traffic from normal flash crowd traffic. Our scheme can detect a DDoS attack in its early stages based on these feature. It can differentiate DDoS from flash crowd traffic effectively even if DDoS is potential. This scheme detects DDoS attacks with on-line and distributed characteristics. Simulation shows the algorithm´s validity and accuracy.
Keywords :
security of data; telecommunication security; telecommunication traffic; cyber security; distributed denial of service attacks; early DDoS attack; nonnegative increment feature detection; traffic throughput; Chaos; Computer crime; Computer security; Computer vision; Covariance matrix; Geology; Internet; Sun; Throughput; Traffic control; DDoS Detection; feature; traffic throughput;
Conference_Titel :
Signal-Image Technologies and Internet-Based System, 2007. SITIS '07. Third International IEEE Conference on
Conference_Location :
Shanghai
Print_ISBN :
978-0-7695-3122-9
DOI :
10.1109/SITIS.2007.122
