A system approach to network modeling for DDoS detection using a Naìve Bayesian classifier

Author

Vijayasarathy, R. ; Raghavan, S.V. ; Ravindran, Balaraman

Author_Institution

Soc. for Electron. Transactions & Security, Chennai, India

fYear

2011

fDate

4-8 Jan. 2011

Firstpage

1

Lastpage

10

Abstract

Denial of Service(DoS) attacks pose a big threat to any electronic society. DoS and DDoS attacks are catastrophic particularly when applied to highly sensitive targets like Critical Information Infrastructure. While research literature has focussed on using various fundamental classifier models for detecting attacks, the common trend observed in literature is to classify DoS attacks into the broad class of intrusions, which makes proposed solutions to this class of attacks unrealistic in practical terms. In this work, the approach to a carefully engineered, practically realised system to detect DoS attacks using a Naìve Bayesian(NB) classifier is described. The work includes network modeling for two protocols - TCP and UDP.

Keywords

Bayes methods; computer network security; pattern classification; transport protocols; DDoS detection; TCP; UDP; critical information infrastructure; denial of service attacks; naive Bayesian classifier; network modeling; Computer crime; Hidden Markov models; Probability; Protocols; Smoothing methods; Training; Training data;

fLanguage

English

Publisher

ieee

Conference_Titel

Communication Systems and Networks (COMSNETS), 2011 Third International Conference on

Conference_Location

Bangalore

Print_ISBN

978-1-4244-8952-7

Electronic_ISBN

978-1-4244-8951-0

Type

conf

DOI

10.1109/COMSNETS.2011.5716474

Filename

5716474