• DocumentCode
    532578
  • Title

    SynFlood attack detection based on distance computation in space geometry

  • Author

    Liu, Huiyu ; Chen, Kai ; Chen, Xiaosu

  • Author_Institution
    Sch. of Comput. Sci. & Tech., Huazhong Univ. of Sci. & Tech., Wuhan, China
  • Volume
    4
  • fYear
    2010
  • fDate
    22-24 Oct. 2010
  • Abstract
    This paper proposes a new SynFlood attack detection method based on the relationship between SYN segment, FIN segment and RST segment of TCP protocol. The method maps the relationship between the aforementioned three segments to the space geometry: their relation during a time quantum is mapped to a point, and a normal relation is mapped to a plane. The method detects SynFlood attack by calculating the distance between the point and the plane. The method exploits the continuity features of SynFlood attack to increase the accuracy rate and efficiency. The simulation results indicate that the method has favorable accuracy and higher data packet processing capability. It can be deployed at the backbone router in a large or medium-sized network.
  • Keywords
    computer networks; geometry; telecommunication security; transport protocols; SynFlood attack detection; TCP protocol; distance computation; space geometry; Degree of Deviation; Discriminated Tuple; SynFlood Attack Detection;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Application and System Modeling (ICCASM), 2010 International Conference on
  • Conference_Location
    Taiyuan
  • Print_ISBN
    978-1-4244-7235-2
  • Electronic_ISBN
    978-1-4244-7237-6
  • Type

    conf

  • DOI
    10.1109/ICCASM.2010.5620778
  • Filename
    5620778
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=532578