Low-rate DDOS Attack Detection using Optimal Objective Entropy Method

A Distributed Denial of Service (DDOS) attack is a type of Internet attack that disrupts the normal function of the targeted computer network (server). This kind of attacks attempts to make target host resource unavailable to its legal users. Several efforts had made in detection and computation of the DDOS attacks over network, where IDS (Intrusion detection systems) are unable to isolate the normal flow of traffic from attacks. So this paper is an introduction of the optimal objective entropy (OOE) based method to detect low-rate DDOS attacks. Minimization of objective function in entropy based method show considerable improvement over the traditional entropy based schemes.

[1]  H. T. Kung,et al.  Use of spectral analysis in defense against DoS attacks , 2002, Global Telecommunications Conference, 2002. GLOBECOM '02. IEEE.

[2]  Suratose Tritilanunt,et al.  Entropy-based input-output traffic mode detection scheme for DoS/DDoS attacks , 2010, 2010 10th International Symposium on Communications and Information Technologies.

[3]  N. Jeyanthi,et al.  An Entropy Based Approach to Detect and Distinguish DDoS Attacks from Flash Crowds in VoIP Networks , 2012, Int. J. Netw. Secur..

[4]  Stephen F. Bush,et al.  Detecting Distributed Denial-of-Service Attacks Using Kolmogorov Complexity Metrics , 2005, Journal of Network and Systems Management.

[5]  Kang G. Shin,et al.  Detecting SYN flooding attacks , 2002, Proceedings.Twenty-First Annual Joint Conference of the IEEE Computer and Communications Societies.

[6]  Aleksandar Kuzmanovic,et al.  Low-rate TCP-targeted denial of service attacks and counter strategies , 2006, TNET.

[7]  Ahmad Faraahi,et al.  An Anomaly-Based Method for DDoS Attacks Detection using RBF Neural Networks , 2011 .

[8]  Vijay Katkar,et al.  Software based Low Rate DoS Attack Detection Mechanism , 2011 .

[9]  Wanlei Zhou,et al.  Low-Rate DDoS Attacks Detection and Traceback by Using New Information Metrics , 2011, IEEE Transactions on Information Forensics and Security.

[10]  Jie Zhang,et al.  An advanced entropy-based DDOS detection scheme , 2010, 2010 International Conference on Information, Networking and Automation (ICINA).

[11]  K. Damodar Rao Efficient Detection of Ddos Attacks by Entropy Variation , 2012 .