Ensemble-based DDoS detection and mitigation model
| Data(s) |
01/11/2012
|
|---|---|
| Resumo |
This work-in-progress paper presents an ensemble-based model for detecting and mitigating Distributed Denial-of-Service (DDoS) attacks, and its partial implementation. The model utilises network traffic analysis and MIB (Management Information Base) server load analysis features for detecting a wide range of network and application layer DDoS attacks and distinguishing them from Flash Events. The proposed model will be evaluated against realistic synthetic network traffic generated using a software-based traffic generator that we have developed as part of this research. In this paper, we summarise our previous work, highlight the current work being undertaken along with preliminary results obtained and outline the future directions of our work. |
| Formato |
application/pdf |
| Identificador | |
| Relação |
http://eprints.qut.edu.au/54505/1/54505.pdf DOI:10.1145/2388576.2388587 Bhatia, Sajal, Schmidt, Desmond, & Mohay, George M. (2012) Ensemble-based DDoS detection and mitigation model. In 2012 Fifth International Conference On Security of Information and Networks, Jaipur, India, pp. 79-86. |
| Direitos |
Copyright 2012 ACM Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. To copy otherwise, to republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. |
| Fonte |
School of Electrical Engineering & Computer Science; Information Security Institute; Science & Engineering Faculty |
| Palavras-Chave | #080303 Computer System Security #DDoS attacks #Network Traffic Analysis #Flash Events #Modelling #Synthetic Traffic Generation #MIB Data Analysis |
| Tipo |
Conference Paper |
