Please use this identifier to cite or link to this item: http://hdl.handle.net/10397/6568
Title: Detecting pulsing denial-of-service attacks with nondeterministic attack intervals
Authors: Luo, X
Chan, EWW
Chang, RKC 
Keywords: Computer crime
Telecommunication traffic
Transmission control protocol
Wavelet transforms
Issue Date: 2-Mar-2009
Publisher: Springer
Source: EURASIP Journal on advances in signal processing, 2 Mar. 2009, v. 2009, 256821, p. 1-13 How to cite?
Journal: EURASIP Journal on advances in signal processing 
Abstract: This paper addresses the important problem of detecting pulsing denial of service (PDoS) attacks which send a sequence of attack pulses to reduce TCP throughput. Unlike previous works which focused on a restricted form of attacks, we consider a very broad class of attacks. In particular, our attack model admits any attack interval between two adjacent pulses, whether deterministic or not. It also includes the traditional flooding-based attacks as a limiting case (i.e., zero attack interval). Our main contribution is Vanguard, a new anomaly-based detection scheme for this class of PDoS attacks. The Vanguard detection is based on three traffic anomalies induced by the attacks, and it detects them using a CUSUM algorithm. We have prototyped Vanguard and evaluated it on a testbed. The experiment results show that Vanguard is more effective than the previous methods that are based on other traffic anomalies (after a transformation using wavelet transform, Fourier transform, and autocorrelation) and detection algorithms (e.g., dynamic time warping).
URI: http://hdl.handle.net/10397/6568
ISSN: 1687-6172
EISSN: 1687-6180
DOI: 10.1155/2009/256821
Rights: Copyright © 2009 Xiapu Luo et al. This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
Appears in Collections:Journal/Magazine Article

Files in This Item:
File Description SizeFormat 
Luo_Detecting_Pulsing_Attack.pdf1.26 MBAdobe PDFView/Open
Access
View full-text via PolyU eLinks SFX Query
Show full item record

SCOPUSTM   
Citations

13
Last Week
0
Last month
0
Citations as of Sep 24, 2017

WEB OF SCIENCETM
Citations

5
Last Week
0
Last month
0
Citations as of Sep 22, 2017

Page view(s)

128
Last Week
0
Last month
Checked on Sep 25, 2017

Download(s)

74
Checked on Sep 25, 2017

Google ScholarTM

Check

Altmetric



Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.