• DocumentCode
    411601
  • Title

    A knowledge-based model for defending distributed DoS

  • Author

    Lin, Shui-Sheng ; Lin, Shun-Chieh ; Tseng, Shian-Shyong

  • Author_Institution
    Dept. of Appl. Math., Nat. Chiao Tung Univ., Hsinchu, Taiwan
  • fYear
    2003
  • fDate
    14-16 Oct. 2003
  • Firstpage
    257
  • Lastpage
    263
  • Abstract
    The knowledge-based model is proposed to solve the prediction problem in distributed DoS. There are three phases in this knowledge-based model. The detecting rules and filtering rules are constructed in knowledge construction phase from characteristic analyzer and domain experts. Based upon false negative criterion, the detecting phase use the detecting rules to finds out the control traffic of distributed DoS. However, some false alarms appear because of the similar traffic with control traffic from special services. Therefore, the filtering rules are used to reduce the false alarm rate in filtering phase and detecting phase.
  • Keywords
    Internet; knowledge based systems; security of data; telecommunication security; telecommunication traffic; distributed DoS; intrusion detection; knowledge construction phase; knowledge-based model; proactive defense; Communication system traffic control; Computer crime; Cryptography; Distributed control; Information filtering; Information filters; Internet; Mathematics; Phase detection; Traffic control;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Security Technology, 2003. Proceedings. IEEE 37th Annual 2003 International Carnahan Conference on
  • Print_ISBN
    0-7803-7882-2
  • Type

    conf

  • DOI
    10.1109/CCST.2003.1297569
  • Filename
    1297569
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=411601