An ISP Level Solution to Combat DDoS Attacks using Combined Statistical Based Approach

Details An ISP Level Solution to Combat DDoS Attacks using Combined Statistical Based Approach An ISP Level Solution to Combat DDoS Attacks using Combined Statistical Based Approach

2012-03-12

arxiv.org/abs/1203.2400v1

International Journal of Information Assurance and Security (JIAS), vol. 3, no. 2, pp. 102-110, 2008

Computer Science

Cryptography and Security

Scientific paper

Disruption from service caused by DDoS attacks is an immense threat to Internet today. These attacks can disrupt the availability of Internet services completely, by eating either computational or communication resources through sheer volume of packets sent from distributed locations in a coordinated manner or graceful degradation of network performance by sending attack traffic at low rate. In this paper, we describe a novel framework that deals with the detection of variety of DDoS attacks by monitoring propagation of abrupt traffic changes inside ISP Domain and then characterizes flows that carry attack traffic. Two statistical metrics namely, Volume and Flow are used as parameters to detect DDoS attacks. Effectiveness of an anomaly based detection and characterization system highly depends on accuracy of threshold value settings. Inaccurate threshold values cause a large number of false positives and negatives. Therefore, in our scheme, Six-Sigma and varying tolerance factor methods are used to identify threshold values accurately and dynamically for various statistical metrics. NS-2 network simulator on Linux platform is used as simulation testbed to validate effectiveness of proposed approach. Different attack scenarios are implemented by varying total number of zombie machines and at different attack strengths. The comparison with volume-based approach clearly indicates the supremacy of our proposed system.

Affiliated with

Also associated with

No associations

Rating

An ISP Level Solution to Combat DDoS Attacks using Combined Statistical Based Approach does not yet have a rating. At this time, there are no reviews or comments for this scientific paper.

If you have personal experience with An ISP Level Solution to Combat DDoS Attacks using Combined Statistical Based Approach, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and An ISP Level Solution to Combat DDoS Attacks using Combined Statistical Based Approach will most certainly appreciate the feedback.

Rate now

Comments { 0 }

Profile ID: LFWR-SCP-O-487644