Detection DoS Attack on FPGA Using Fuzzy Association Rules

Author

Tuncer, Taner ; Tatar, Yetkin

Author_Institution

Dept. of Comput. Eng., Univ. of Firat, Elazig, Turkey

fYear

2011

fDate

16-18 Nov. 2011

Firstpage

1271

Lastpage

1276

Abstract

This paper proposes a programmable embedded system based on data mining and fuzzy logic to determine Denial of Service (DoS) attacks in real time. The proposed system detects the DoS attacks to a web service. The system consists of two phases. At the first phase, the number of terminated connection and the number of connection request statistics and so on have been extracted from packet. These obtained features constitute training data. Each record in training data was obtained with 2 sec intervals from network traffic. Then Fuzzy classification rules have been obtained from training data by data mining and fuzzy logic. At the second phase, DoS attacks have been detected using these rules in real time for testing purpose. The proposed system has been tested on Altera Cyclone III EPC3C40F484C7 in the FPGA environment.

Keywords

Web services; computer network security; data mining; embedded systems; field programmable gate arrays; fuzzy logic; pattern classification; telecommunication traffic; DoS attack detection; FPGA; Web service; connection request statistics; data mining; denial of service attack detection; fuzzy association rules; fuzzy classification rules; fuzzy logic; network traffic; programmable embedded system; Association rules; Computer crime; Field programmable gate arrays; Real time systems; Training; Training data; DoS Attack; Embedded System; Fuzzy Classification Rules; SOPC;

fLanguage

English

Publisher

ieee

Conference_Titel

Trust, Security and Privacy in Computing and Communications (TrustCom), 2011 IEEE 10th International Conference on

Conference_Location

Changsha

Print_ISBN

978-1-4577-2135-9

Type

conf

DOI

10.1109/TrustCom.2011.171

Filename

6120965