مرکز منطقه ای اطلاع رساني علوم و فناوري - Implementation of anomaly detection algorithms for detecting Transmission Control Protocol Synchronized flooding attacks

DocumentCode :

3730684

Title :

Implementation of anomaly detection algorithms for detecting Transmission Control Protocol Synchronized flooding attacks

Author :

Nenekazi N. P. Mkuzangwe;Andre McDonald;Fulufhelo V. Nelwamondo

Author_Institution :

Modelling and Digital Science, Council for Scientific and Industrial Research, Pretoria, South Africa

fYear :

2015

Firstpage :

2137

Lastpage :

2141

Abstract :

This work implements two anomaly detection algorithms for detecting Transmission Control Protocol Synchronized (TCP SYN) flooding attack. The two algorithms are an adaptive threshold algorithm and a cumulative sum (CUSUM) based algorithm. Furthermore, we fused the outcomes of the two algorithms using the logic OR operator at different thresholds of the two algorithms to obtain improved detection accuracy. Indeed, the results indicated that the OR operator performs better than the two algorithms in detecting SYN flooding attack and detection delay.

Keywords :

"Floods","Sensor fusion","Detection algorithms","Servers","Time measurement","Protocols"

Publisher :

ieee

Conference_Titel :

Fuzzy Systems and Knowledge Discovery (FSKD), 2015 12th International Conference on

Type :

conf

DOI :

10.1109/FSKD.2015.7382282

Filename :

7382282

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3730684