Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to main content
SpringerLink
Log in

Probability Principle of a Reliable Approach to Detect Signs of DDOS Flood Attacks

  • Conference paper
Parallel and Distributed Computing: Applications and Technologies (PDCAT 2004)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3320))

Abstract

Attentions are increasingly paid to reliable detection of intrusions as can be seen from [1, 2]. As a matter of fact, the challenge is to develop a system that detects close to 100 percent of attacks with minimal false positives. We are still far from achieving this goal [1, p. 28]. In this regard, our early work discusses a reliable approach regarding detection of signs of distributed denial-of-service (DDOS) attacks [3], where arrival time series of a protected site is specifically featured by autocorrelation function. As a supplementary to [3], this article specifically focuses on abstractly discussing probability principle involved in [3] such that the present probability principle of detection is flexible in practical applications. In addition to this, the selection of a threshold for a given detection probability is also given.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Kemmerer, R.A., Vigna, G.: Intrusion detection: a brief history and overview. Supplement to IEEE Computer (IEEE Security & Privacy) 35(4), 27–30 (2002)

    Google Scholar 

  2. Leach, J.: TBSE an engineering approach to the design of accurate and reliable security systems. Computer & Security 23(1), 22–28 (2004)

    Article  Google Scholar 

  3. Li, M.: An approach to reliably identifying signs of DDOS flood attacks based on LRD traffic pattern recognition. Computer & Security 23(7), 549–558 (2004)

    Article  Google Scholar 

  4. Wood, C.C.: Why information security is now multi-disciplinary, multi-departmental, and multi-organizational in nature. Computer Fraud & Security 2004(1), 16–17 (2004)

    Article  Google Scholar 

  5. Li, M., et al.: Modeling autocorrelation function of self-similar teletraffic in communication networks based on optimal approximation in Hilbert space. Applied Mathematical Modelling 27(3), 155–168 (2003)

    Article  MATH  Google Scholar 

  6. Li, M., Chi, C.-H.: A correlation based computational model for synthesizing long-range dependent data. Journal of the Franklin Institute 340(6/7), 503–514 (2003)

    Article  MATH  MathSciNet  Google Scholar 

  7. Li, M., et al.: Correlation form of timestamp increment sequences of self-similar traffic on Ethernet. Electronics Letters 36(19), 1168–1169 (2000)

    Article  Google Scholar 

  8. Adas, A.: Traffic models in broadband networks. IEEE Communications Magazine 35(7), 82–89 (1997)

    Article  Google Scholar 

  9. Michiel, H., Laevens, K.: Teletraffic engineering in a broad-band era. Proc. of IEEE 85(12), 2007–2033 (1997)

    Article  Google Scholar 

  10. Willinger, W., Paxson, V.: Where mathematics meets the Internet. Notices of the American Mathematical Society 45(8), 961–970 (1998)

    MATH  MathSciNet  Google Scholar 

  11. Levy-Vehel, J., Lutton, E., Tricot, C. (eds.): Fractals in Engineering. Springer, Heidelberg (1997)

    MATH  Google Scholar 

  12. Adler, R.J., Feldman, R.E., Taqqu, M.S.: A Practical Guide to Heavy Tails: Statistical Techniques and Applications. Birkhauser, Boston (1998)

    MATH  Google Scholar 

  13. Garber, L.: Denial-of-service attacks rip the Internet. IEEE Computer 33(4), 12–17 (2000)

    Google Scholar 

  14. Amoroso, E.G.: Intrusion Detection: An Introduction to Internet Surveillance, Correlation, Traps, Trace Back, and Response. Intrusion.Net Book (1999)

    Google Scholar 

  15. Raymond, J.: Traffic analysis: protocols, attacks, design issues and open problems. In: Federrath, H. (ed.) Designing Privacy Enhancing Technologies. LNCS, vol. 2009, pp. 10–29. Springer, Heidelberg (2001)

    Chapter  Google Scholar 

  16. Griffel, D.H.: Applied Functional Analysis. Ellis Horwood, John Wiley & Sons (1981)

    Google Scholar 

  17. Bendat, J.S., Piersol, A.G.: Random Data: Analysis and Measurement Procedure, 3rd edn. John Wiley & Sons, Chichester (2000)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. School of Information Science & Technology, East China Normal University, Shanghai, 200026, P.R. China

    Ming Li & Jingao Liu

  2. Department of Computer Science, Zhongshan University, Guangzhou, 510275, P.R. China

    Dongyang Long

Authors
  1. Ming Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Jingao Liu
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Dongyang Long
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Nanyang Centre for Supercomputing and Visualisation School of Mechanical and Production Engineering, Nanyang Technological University, 50 Nanyang Avenue, 639 798, Singapore

    Kim-Meow Liew

  2. School of Computer Science, The University of Adelaide,  

    Hong Shen

  3. Asia Pacific Science and Technology Center, Sun Microsystems Inc., 50 Nanyang Avenue, N3-1c-10, 639798, Singapore

    Simon See

  4. School of Computer Engineering, Nanyang Technological University, 639798, Singapore

    Wentong Cai

  5. Southwest Jiaotong University,  

    Pingzhi Fan

  6. Tohoku University ,  

    Susumu Horiguchi

Rights and permissions

Reprints and permissions

Copyright information

© 2004 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Li, M., Liu, J., Long, D. (2004). Probability Principle of a Reliable Approach to Detect Signs of DDOS Flood Attacks. In: Liew, KM., Shen, H., See, S., Cai, W., Fan, P., Horiguchi, S. (eds) Parallel and Distributed Computing: Applications and Technologies. PDCAT 2004. Lecture Notes in Computer Science, vol 3320. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30501-9_114

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-30501-9_114

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-24013-6

  • Online ISBN: 978-3-540-30501-9

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation