Title :
An advanced entropy-based DDOS detection scheme
Author :
Zhang, Jie ; Qin, Zheng ; Ou, Lu ; Jiang, Pei ; JianRong Liu ; Liu, Alex X.
Author_Institution :
Coll. of Software, Hunan Univ., Changsha, China
Abstract :
Prior work has shown entropy-based DDOS detection is suitable for detecting low-rate DOS. A key challenge in this approach is to determine the most suitable threshold for detecting DDOS attacks accurately. To address this challenge, we propose an advanced entropy-based (AEB) scheme, which divides variable rate DDOS attacks into different fields and treats each field with different methods. Compared with prior entropy-based approaches, our scheme has significant better performance on distinguishing waves of legal traffic and flash crowds from low-rate DOS. We validate the effectiveness of our scheme by conducting extensive simulation in NS-2. Both theoretical analysis and experimental results show that our scheme can efficiently detect DDOS attacks with high accuracy.
Keywords :
entropy; security of data; DDOS attacks detection; NS-2; advanced entropy-based DDOS detection scheme; flash crowds; legal traffic waves; Biomedical monitoring; Logic gates; Monitoring; Attacking Detection; DDOS; Entropy-based;
Conference_Titel :
Information Networking and Automation (ICINA), 2010 International Conference on
Conference_Location :
Kunming
Print_ISBN :
978-1-4244-8104-0
Electronic_ISBN :
978-1-4244-8106-4
DOI :
10.1109/ICINA.2010.5636786
