Early Warning System for DDoS Attacking Based on Multilayer Deployment of Time Delay Neural Network

Distributed denial of service (DDoS) is one of the most persecution network attack techniques to be confronted in recent years. From the definition of DDoS, thousands of network attacks must initiate simultaneously and continuously to achieve a successful DDoS attacking. Therefore, almost all of the information system cannot survive as they confront the DDoS attacks. Although there are a lot of intrusion detection system (IDS) developed, preventing DDoS attack is still difficult and perplexing. In this paper, an early warning system for detecting DDoS attacking has been mounted to a traditional IDS to form a completely system. This early warning system is developed based on the rationale of time delay neural network. In the networking topology, each node is monitored with the deployment of detectors to establish a multilayer architecture. In addition, the activities of each node will be monitored by their neighboring nodes to check whether it is still survival or not mutually. After then, all of the attacking information will be collected and transferred to the expert module for integrating analysis. As those nodes dispatched on the DMZ or between the first and second layer of firewall face some attacking similar as the pattern of DDoS, the kernel expert module which dispatched behind the second firewall will take some feasible actions and initiate the defense strategies to protect the kernel information system. In the meanwhile, those failed nodes will be restarted and act as the role of vanguard to assure the networking under normal operation.

[1]  Rafael Marín López,et al.  Authentication, Authorization, and Accounting (aaa) Goals for Mobile Ipv6 , 2009 .

[2]  Hadi Sadoghi Yazdi,et al.  Intrusion Detection by New Data Description Method , 2010, 2010 International Conference on Intelligent Systems, Modelling and Simulation.

[3]  NathBaikunth,et al.  Layered Approach Using Conditional Random Fields for Intrusion Detection , 2010 .

[4]  Donald F. Towsley,et al.  Detecting anomalies in network traffic using maximum entropy estimation , 2005, IMC '05.

[5]  A. B. M. Alim Al Islam,et al.  Detection of various denial of service and Distributed Denial of Service attacks using RNN ensemble , 2009, 2009 12th International Conference on Computers and Information Technology.

[6]  Kotagiri Ramamohanarao,et al.  Layered Approach Using Conditional Random Fields for Intrusion Detection , 2010, IEEE Transactions on Dependable and Secure Computing.

[7]  M A Pérez-del-Pino,et al.  Towards self-organizing maps based Computational Intelligent System for denial of Service Attacks Detection , 2010, 2010 IEEE 14th International Conference on Intelligent Engineering Systems.

[8]  Zhifeng Chen,et al.  Application of PSO-RBF Neural Network in Network Intrusion Detection , 2009, 2009 Third International Symposium on Intelligent Information Technology Application.