scholarly journals Coherent Detection of Synchronous Low-Rate DoS Attacks

2021 ◽  
Vol 2021 ◽  
pp. 1-14
Author(s):  
Zhijun Wu ◽  
Yue Yin ◽  
Guang Li ◽  
Meng Yue
Keyword(s):  
Spread Spectrum ◽  
Average Rate ◽  
Denial Of Service ◽  
Attack Detection ◽  
Coherent Detection ◽  
Spread Spectrum Communication ◽  
Terminal Phase ◽  
Convolution Algorithm ◽  
Coherence Detection ◽  
Low Rate

Low-rate denial-of-service (LDoS) attacks are characterized by low average rate and periodicity. Under certain conditions, the high concealment of LDoS attacks enables them to transfer the attack stream to the network without being detected at all before the end. In this article, plenty of LDoS attack traffic is spread to the victim end to detect LDoS attacks. Through experimental analysis, it is found that the attack pulses at the victim end have sequence correlation, so the coherence detection technology in spread spectrum communication is proposed to detect LDoS attacks. Therefore, this paper proposes an attack detection method based on coherent detection, which adopts bivariate cyclic convolution algorithm. Similar to the generation of receiving terminal phase dry detection code in spread spectrum communication, we construct a local detection sequence to complete the extraction of LDoS attack stream from the background traffic of the victim terminal, that is, the coherent detection of LDoS attacks. When predicting the features of an LDoS attack, how to construct the parameters of the detection sequence (such as period, pulse duration, amplitude, and so on) is very important. In this paper, we observe the correlation of LDoS attacks and use coherence detection to detect LDoS attacks. By comparing calculated cross-correlation values with designed double threshold rules, the existence of attacks can be determined. The simulation platform and experiments show that this method has high detection performance.

Low rate TCP denial-of-service attack detection at edge routers

2005 ◽  
Vol 9 (4) ◽  
pp. 363-365 ◽  
Author(s):  
A. Shevtekar ◽  
K. Anantharam ◽  
N. Ansari
Keyword(s):  
Denial Of Service ◽  
Attack Detection ◽  
Denial Of Service Attack ◽  
Service Attack ◽  
Low Rate

scholarly journals SOFT COMPUTING BASED AUTONOMOUS LOW RATE DDOS ATTACK DETECTION AND SECURITY FOR CLOUD COMPUTING

2019 ◽  
Vol 2019 (2) ◽  
pp. 80-90 ◽  
Author(s):  
Mugunthan S. R.
Keyword(s):  
Cloud Computing ◽  
Soft Computing ◽  
High Speed ◽  
Denial Of Service ◽  
Attack Detection ◽  
Ddos Attacks ◽  
Counter Measures ◽  
Cloud Architecture ◽  
Ddos Attack Detection ◽  
Low Rate

The fundamental advantage of the cloud environment is its instant scalability in rendering the service according to the various demands. The recent technological growth in the cloud computing makes it accessible to people from everywhere at any time. Multitudes of user utilizes the cloud platform for their various needs and store their complete details that are personnel as well as confidential in the cloud architecture. The storage of the confidential information makes the cloud architecture attractive to its hackers, who aim in misusing the confidential/secret information’s. The misuse of the services and the resources of the cloud architecture has become a common issue in the day to day usage due to the DDOS (distributed denial of service) attacks. The DDOS attacks are highly mature and continue to grow at a high speed making the detecting and the counter measures a challenging task. So the paper uses the soft computing based autonomous detection for the Low rate-DDOS attacks in the cloud architecture. The proposed method utilizes the hidden Markov Model for observing the flow in the network and the Random forest in classifying the detected attacks from the normal flow. The proffered method is evaluated to measure the performance improvement attained in terms of the Recall, Precision, specificity, accuracy and F-measure.

Modeling and Simulation of Low Rate of Denial of Service Attacks

2014 ◽  
Vol 484-485 ◽  
pp. 1063-1066
Author(s):  
Kui Liang Xia
Keyword(s):  
High Efficiency ◽  
Denial Of Service ◽  
Research Work ◽  
Attack Detection ◽  
Detection Methods ◽  
Dos Attacks ◽  
Denial Of Service Attack ◽  
Service Attack ◽  
User Data ◽  
Low Rate

The low-rate denial of service attack is more applicable to the network in recent years as a means of attack, which is different from the traditional field type DoS attacks at the network end system or network using adaptive mechanisms exist loopholes flow through the low-rate periodic attacks on the implementation of high-efficiency attacked by an intruder and not be found, resulting in loss of user data or a computer deadlock. LDos attack since there has been extensive attention of researchers, the attack signature analysis and detection methods to prevent network security have become an important research topic. Some have been proposed for the current attacks were classified LDoS describe and model, and then in NS-2 platform for experimental verification, and then LDoS attack detection to prevent difficulties are discussed and summarized for the future such attacks detection method research work to provide a reference.

scholarly journals Information Theory-based Approaches to Detect DDoS Attacks on Software-defined Networking Controller a Review

2021 ◽  
Vol 15 ◽  
pp. 83-94
Author(s):  
Mohammad A. Aladaileh ◽  
Mohammed Anbar ◽  
Iznan H. Hasbullah ◽  
Yousef K. Sanjalawe
Keyword(s):  
Information Theory ◽  
Flow Behavior ◽  
Denial Of Service ◽  
Software Defined Networking ◽  
Attack Detection ◽  
High Rate ◽  
Ddos Attacks ◽  
Ddos Attack ◽  
Ddos Attack Detection ◽  
Low Rate

The number of network users and devices has exponentially increased in the last few decades, giving rise to sophisticated security threats while processing users’ and devices’ network data. Software-Defined Networking (SDN) introduces many new features, but none is more revolutionary than separating the control plane from the data plane. The separation helps DDoS attack detection mechanisms by introducing novel features and functionalities. Since the controller is the most critical part of the SDN network, its ability to control and monitor network traffic flow behavior ensures the network functions properly and smoothly. However, the controller’s importance to the SDN network makes it an attractive target for attackers. Distributed Denial of Service (DDoS) attack is one of the major threats to network security. This paper presents a comprehensive review of information theory-based approaches to detect low-rate and high-rate DDoS attacks on SDN controllers. Additionally, this paper provides a qualitative comparison between this work and the existing reviews on DDoS attack detection approaches using various metrics to highlight this work’s uniqueness. Moreover, this paper provides in-depth discussion and insight into the existing DDoS attack detection approaches to point out their weaknesses that open the avenue for future research directions. Meanwhile, the finding of this paper can be used by other researchers to propose a new or enhanced approach to protect SDN controllers from the threats of DDoS attacks by accurately detecting both low-rate and high-rate DDoS attacks.

scholarly journals Low-Rate DDoS Attack Detection Using Expectation of Packet Size

2017 ◽  
Vol 2017 ◽  
pp. 1-14 ◽  
Author(s):  
Lu Zhou ◽  
Mingchao Liao ◽  
Cao Yuan ◽  
Haoyu Zhang
Keyword(s):  
Denial Of Service ◽  
False Negative ◽  
Attack Detection ◽  
Detection Sensitivity ◽  
Distributed Denial Of Service ◽  
Ddos Attacks ◽  
Packet Size ◽  
Tolerance Factors ◽  
Ddos Attack Detection ◽  
Low Rate

Low-rate Distributed Denial-of-Service (low-rate DDoS) attacks are a new challenge to cyberspace, as the attackers send a large amount of attack packets similar to normal traffic, to throttle legitimate flows. In this paper, we propose a measurement—expectation of packet size—that is based on the distribution difference of the packet size to distinguish two typical low-rate DDoS attacks, the constant attack and the pulsing attack, from legitimate traffic. The experimental results, obtained using a series of real datasets with different times and different tolerance factors, are presented to demonstrate the effectiveness of the proposed measurement. In addition, extensive experiments are performed to show that the proposed measurement can detect the low-rate DDoS attacks not only in the short and long terms but also for low packet rates and high packet rates. Furthermore, the false-negative rates and the adjudication distance can be adjusted based on the detection sensitivity requirements.

SIMULATION OF DIRECT SPREAD SPECTRUM COMMUNICATION SYSTEM ON THE HARDWARE MODULE EMONA DATEX. EVALUATION OF THE EFFECT OF NOISE ON THE QUALITY OF DEMODULATION

2019 ◽  
Author(s):  
Maksim Zhmakin ◽  
Irina Chadyuk ◽  
Aleksey Nadymov
Keyword(s):  
Spread Spectrum ◽  
Communication System ◽  
Spread Spectrum Communication ◽  
Direct Spread ◽  
Simulation Results

A variant of implementation of a communication system with direct spread spectrum is presented in this article, simulation results are also presented, the main parameters of the system are taken, and conclusions are drawn.

Sign in / Sign up

Export Citation Format

Share Document