Title :
Detecting and Tracing DDoS Attacks by Intelligent Decision Prototype
Author :
Chonka, Ashley ; Zhou, Wanlei ; Singh, Jaipal ; Xiang, Yang
Author_Institution :
Sch. of Eng. & Inf. Technol., Deakin Univ., Geelong, VIC
Abstract :
Over the last couple of months a large number of distributed denial of service (DDoS) attacks have occurred across the world, especially targeting those who provide Web services. IP traceback, a counter measure against DDoS, is the ability to trace IP packets back to the true source/s of the attack. In this paper, an IP traceback scheme using a machine learning technique called intelligent decision prototype (IDP), is proposed. IDP can be used on both probabilistic packet marking (PPM) and deterministic packet marking (DPM) traceback schemes to identify DDoS attacks. This will greatly reduce the packets that are marked and in effect make the system more efficient and effective at tracing the source of an attack compared with other methods. IDP can be applied to many security systems such as data mining, forensic analysis, intrusion detection systems (IDS) and DDoS defense systems.
Keywords :
Web services; decision trees; learning (artificial intelligence); security of data; IP packets; Web services; data mining; deterministic packet marking; distributed denial of service attacks; forensic analysis; intelligent decision prototype; intrusion detection systems; probabilistic packet marking; Computer crime; Counting circuits; Data mining; Data security; Forensics; Intrusion detection; Learning systems; Machine learning; Prototypes; Web services; Decision trees; Distributed Denial of Service; IP Traceback; Intelligent Decision Prototype; Machine Learning;
Conference_Titel :
Pervasive Computing and Communications, 2008. PerCom 2008. Sixth Annual IEEE International Conference on
Conference_Location :
Hong Kong
Print_ISBN :
978-0-7695-3113-7
DOI :
10.1109/PERCOM.2008.76
