期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

基于非线性预处理网络流量预测方法的泛洪型DDoS攻击检测算法 被引量:19

A Flooding-Based DDoS Detection Algorithm Based on Non-Linear Preprocessing Network Traffic Predicted Method
在线阅读 下载PDF
导出
摘要 该文提出了一种基于非线性预处理网络流量预测方法NLPP(Non-Linear Preprocessing Network Traffic Prediction)的分布式拒绝服务DDoS攻击检测算法,该算法是在分析DDoS攻击的网络流量特性基础上提出的,由一个基本检测算法和一个非线性预处理网络流量预测方法组成.通过与两种经典算法———基于VTP的检测算法和基于小波分析的检测算法对比分析,证明文中提出的算法有比这两种经典算法更高效的检测结果.只要参数选取合适,该算法可以达到100%的检到率和100%的正确率.该算法在引入非线性预处理网络流量预测方法NLPP后,大大缩短了检测延迟,可以很好地实时检测DDoS攻击. This paper presents an algorithm based on NLPP(Non-linear Preprocessing Network Traffic Prediction) for detection of DDoS attack.The algorithm,which is brought up based on the network characteristics on DDoS attack,consists of a basic detection method and a NLPP method.Compared to the classic algorithms,VTP-based detection algorithm and detection algorithm based on wavelet analysis,it is proven that is a more efficient algorithm concerning detection results.The algorithm can achieve 100% of both detection rate and accuracy rate when parameters are porperly set.Moreover,detection delay is greatly shorten and also it can realize well real-time detection of DDoS attack after NLPP is introduced.
作者 杨新宇 杨树森 李娟
机构地区 西安交通大学计算机科学与技术系
出处 《计算机学报》 EI CSCD 北大核心 2011年第2期395-405,共11页 Chinese Journal of Computers
基金 国家自然科学基金项目"基于网络流量的DDoS安全防御体系与关键技术研究"(60403028)资助
关键词 分布式拒绝服务 非线性预处理 网络流量预测 实时检测 distributed denial of service non-linear preprocessing network traffic prediction real-time detection
分类号 TP393 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献18

  • 1Comp.Emergency Response Team.Result of the Distribu-ted-Systems Intruder Tools Workshop.http://www.cert.org/nav/allpubs.html.
  • 2Peng Tao,Leckie Christopher.Ramamohanarao Kotagiri.Survey of network-based defense mechanisms countering the DoS and DDoS problems.ACM Computing Surveys,2007,39(1):3.
  • 3Cheng Chen-Mou,Kung H T,Tan Koan-Sin.Use of spectral analysis in defense against DoS attacks//Proceedings of the IEEE GLOBECOM.Taipei,Taiwan,2002,3:2143-2148.
  • 4Paul Barford,Jeffery Kline,David Plonka et al.A signal analysis of network traffic anomalies//Proceedings of the ACM SIGCOMM Internet Measurement Workshop.Marseilles,France,2002:71-82.
  • 5Broido Andre,Nemeth Evi,Claffy K C.Spectroscopy of DNS update traffic//Proceedings of the ACM SIGMET-RICS.San Diego,CA,2003,31(1):320-321.
  • 6Partridge Craig,Cousins David,Jackson Alden et al.Using signal processing to analyze wireless data traffic//Proceed-ings of the ACM Workshop on Wireless Security.Atlanta,GA,2002:67-76.
  • 7Wang Hai-Ning,Zhang Dan-Lu,Shin Kang G.Detecting SYN flooding attacks//Proceedings of the 21st Annual Joint Conference of the IEEE Computer and Communications Societies.New York,NY,USA,2002,3:1530-1539.
  • 8Caberera J B D,Ravichandran B,Mehra R K.Statistical traffic modeling for network intrusion detection//Proceedings of the 8th International Symposium on Modeling,Analysis and Simulation of Computer and Telecommunication Systems.San Francisco,California,USA,2000:466-473.
  • 9李金明,王汝传.基于VTP方法的DDoS攻击实时检测技术研究[J].电子学报,2007,35(4):791-796. 被引量:18
  • 10Li Lan,Lee Gyungho.DDoS attack detection and wavelets// Proceedings of the Computer Communications and Networks.Dallas,TX 75240,USA,2003:421-427.

二级参考文献25

  • 1孙钦东,张德运,高鹏.基于时间序列分析的分布式拒绝服务攻击检测[J].计算机学报,2005,28(5):767-773. 被引量:55
  • 2CHANG R K C.Defending against flooding-based distributed denial-of-service attack:a tutorial[J].IEEE Comm Magazine,2002,40(10):42-51.
  • 3LAU F,RUBIN S H,SMITH M H.Distributed denial of service attacks[A].Proceedings of the IEEE International Conference on Systems,Man,and Cybernetics[C].Nashville,2000.2275-2280.
  • 4LELAND W,TAQQU M,WILLINGER W.On the self-similar nature of Ethernet traffic (Extended Version)[J].IEEE/ACM Trans on Networking,1994,2(1):1-15.
  • 5PAXSON V,FLOYD S.Wide area traffic:the failure of poisson modeling[J].IEEE/ACM Trans on Networking,1995,3(3):226-244.
  • 6DANG T D,MOLNAR S.On the Effects of Non-Staionarity in Long Range Dependent Tests[R].Budapest Univ Technology and Economics Tech Rep,Budapest,Hungary,1999.
  • 7ABRY P,VEITCH D.Wavelet analysis of long range dependent traffic[J].IEEE Trans on Infor Theory,1998,44(1):2-15.
  • 8李弻程,罗建书.小波分析及其应用[M].北京:电子工业出版社,2003.
  • 9DAUBECHIES I.Ten Lectures on Wavelets[M].Philadelphia,PA:SIAM,1992.
  • 10G W Womell,A V Oppenheim.Estimation of fractal signals from noisy measurements using wavelets[J].IEEE Trans on Signal Processing.1992,40(3):611-623.

共引文献68

同被引文献152

引证文献19

二级引证文献144

计算机学报
2011年 第2期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部