Title :
SynFlood attack detection based on distance computation in space geometry
Author :
Liu, Huiyu ; Chen, Kai ; Chen, Xiaosu
Author_Institution :
Sch. of Comput. Sci. & Tech., Huazhong Univ. of Sci. & Tech., Wuhan, China
Abstract :
This paper proposes a new SynFlood attack detection method based on the relationship between SYN segment, FIN segment and RST segment of TCP protocol. The method maps the relationship between the aforementioned three segments to the space geometry: their relation during a time quantum is mapped to a point, and a normal relation is mapped to a plane. The method detects SynFlood attack by calculating the distance between the point and the plane. The method exploits the continuity features of SynFlood attack to increase the accuracy rate and efficiency. The simulation results indicate that the method has favorable accuracy and higher data packet processing capability. It can be deployed at the backbone router in a large or medium-sized network.
Keywords :
computer networks; geometry; telecommunication security; transport protocols; SynFlood attack detection; TCP protocol; distance computation; space geometry; Degree of Deviation; Discriminated Tuple; SynFlood Attack Detection;
Conference_Titel :
Computer Application and System Modeling (ICCASM), 2010 International Conference on
Conference_Location :
Taiyuan
Print_ISBN :
978-1-4244-7235-2
Electronic_ISBN :
978-1-4244-7237-6
DOI :
10.1109/ICCASM.2010.5620778
