Active network based DDoS defense

Sterne, D.; Djahandari, K.; Balupari, R.; Cholter, W. La; Babson, Bill; Wilson, Brad; Narasimhan, Priya; Purtell, A.; Schnackenberg, D.; Linden, S.

doi:10.1109/dance.2002.1003493

Cited by 19 publications

(3 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Rising the necessity of countermeasure of DDoS attack, multiple studies have been progressed [4,5,6,7,8,9,10]. In this paper, Machine learning method is introduced.…”

Section: Existing Ddos Attack Detion Methodsmentioning

confidence: 99%

DDoS flooding attack detection through a step-by-step investigation

Jun

Kim

2011

2011 IEEE 2nd International Conference on Networked Embedded Systems for Enterprise Applications

View full text Add to dashboard Cite

Internet users are increases, distributed denial of service (DDoS) attack present a very serious threat to the stability of the internet. The DDoS attack, which is consuming all of the computing or communication resources necessary for the service, is known very difficult to protect. The threat posed by network attacks on large network, such as the internet, demands effective detection method. Therefore, an intrusion detection system on large network is need to efficient real-time detection. In this paper, we propose the entropy-based detection mechanism against DDoS attacks in order to guarantee the transmission of normal traffic and prevent the flood of abnormal traffic. The OPNET simulation results show that our ideas can provide enough services in DDoS attack.

show abstract

“…Rising the necessity of countermeasure of DDoS attack, multiple studies have been progressed [4,5,6,7,8,9,10]. In this paper, Machine learning method is introduced.…”

Section: Existing Ddos Attack Detion Methodsmentioning

confidence: 99%

DDoS flooding attack detection through a step-by-step investigation

Jun

Kim

2011

2011 IEEE 2nd International Conference on Networked Embedded Systems for Enterprise Applications

View full text Add to dashboard Cite

show abstract

“…Figure 4. It utilizes a layered structure where the attacker uses a client program to connect to handlers, which are compromised systems that issue commands to the zombie agents [46], which in turn facilitate the DDoS attack. Agents are compromised via the handlers by the attacker, using automated routines to exploit vulnerabilities in programs that accept remote connections running on the targeted remote hosts.…”

Section: Denial Of Servicementioning

confidence: 99%

A Survey of Network-based Security Attacks

Khan¹,

Goodridge²

2019

IJANA

View full text Add to dashboard Cite

Cross Site Scripting, SQL Injection, Denial of Service (DOS), Buffer Overflow and Password Cracking are current network-based security attacks that still looms on the Internet. Though these attacks have been around for decades and there exist protective mechanism for overcoming them they are still relevant today. In this paper we describe the basic workings of these attacks and outline how companies and individuals can mitigate these attacks. By taking the necessary precautions the severity of these attacks can be diminished.

show abstract

“…Approaches which mainly focus on mitigation and remediation are not discussed here. One approach of Sterne et al [16] detects stochastic anomalies by using a simple threshold based DDoS detection mechanism. The system consists of three components: the DDoS flood detector, a management station which dispatches an active program in case of a DDoS detection and routers which are active networking nodes and are able to execute the active program.…”

Section: Related Workmentioning

confidence: 99%

An Extensible and Flexible System for Network Anomaly Detection

Gamer

Schöller

Bless

2006

Autonomic Networking

View full text Add to dashboard Cite

Network hazards like attacks or misbehaving nodes are still a great obstacle for network operators. Distributed denial of service attacks and worm propagations do not only affect the attacked nodes but also the network itself by wasting network resources. In wireless ad hoc networks even more hazards exist due to its self-organizing characteristic. A detection of such network hazards as early as possible enables a fast deployment of appropriate countermeasures and thereby significantly improves network operation. Our proposed detection system uses programmable network technology to deploy such a system within the network itself. Doing this without influencing the routing performance seriously demands a resource saving architecture. We therefore propose to use a hierarchical architecture which runs a very small basic stage all the time and loads specialized detection modules on demand to verify the network hazard. In this paper we introduce our system which can detect DDoS attacks, worm propagations, and wormhole attacks.

show abstract

Active network based DDoS defense

Cited by 19 publications

References 10 publications

DDoS flooding attack detection through a step-by-step investigation

DDoS flooding attack detection through a step-by-step investigation

A Survey of Network-based Security Attacks

An Extensible and Flexible System for Network Anomaly Detection

Contact Info

Product

Resources

About