Entropy-based input-output traffic mode detection scheme for DoS/DDoS attacks
Denial-of-service attacks (DoS) and distributed denial-of-service attacks (DDoS) attempt to temporarily disrupt users or computer resources to cause service unavailability to legitimate users in the internetworking system. The most common type of DoS attack occurs when adversaries flood a large amou...
Saved in:
| Main Authors: | , , , |
|---|---|
| Other Authors: | |
| Format: | Conference or Workshop Item |
| Published: |
2018
|
| Subjects: | |
| Online Access: | https://repository.li.mahidol.ac.th/handle/123456789/28971 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Mahidol University |
| id |
th-mahidol.28971 |
|---|---|
| record_format |
dspace |
| spelling |
th-mahidol.289712018-09-24T15:56:20Z Entropy-based input-output traffic mode detection scheme for DoS/DDoS attacks Suratose Tritilanunt Suphannee Sivakorn Choochern Juengjincharoen Ausanee Siripornpisan Mahidol University Computer Science Denial-of-service attacks (DoS) and distributed denial-of-service attacks (DDoS) attempt to temporarily disrupt users or computer resources to cause service unavailability to legitimate users in the internetworking system. The most common type of DoS attack occurs when adversaries flood a large amount of bogus data to interfere or disrupt the service on the server. By using a volume-based scheme to detect such attacks, this technique would not be able to inspect short-term denial-of-service attacks, as well as cannot distinguish between heavy load from legitimate users and huge number of bogus messages from attackers. As a result, this paper provides a detection mechanism based on a technique of entropy-based input-output traffic mode detection scheme. The experimental results demonstrate that our approach is able to detect several kinds of denial-of-service attacks, even small spike of such attacks. ©2010 IEEE. 2018-09-24T08:56:20Z 2018-09-24T08:56:20Z 2010-12-01 Conference Paper ISCIT 2010 - 2010 10th International Symposium on Communications and Information Technologies. (2010), 804-809 10.1109/ISCIT.2010.5665097 2-s2.0-78651254040 https://repository.li.mahidol.ac.th/handle/123456789/28971 Mahidol University SCOPUS https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=78651254040&origin=inward |
| institution |
Mahidol University |
| building |
Mahidol University Library |
| continent |
Asia |
| country |
Thailand Thailand |
| content_provider |
Mahidol University Library |
| collection |
Mahidol University Institutional Repository |
| topic |
Computer Science |
| spellingShingle |
Computer Science Suratose Tritilanunt Suphannee Sivakorn Choochern Juengjincharoen Ausanee Siripornpisan Entropy-based input-output traffic mode detection scheme for DoS/DDoS attacks |
| description |
Denial-of-service attacks (DoS) and distributed denial-of-service attacks (DDoS) attempt to temporarily disrupt users or computer resources to cause service unavailability to legitimate users in the internetworking system. The most common type of DoS attack occurs when adversaries flood a large amount of bogus data to interfere or disrupt the service on the server. By using a volume-based scheme to detect such attacks, this technique would not be able to inspect short-term denial-of-service attacks, as well as cannot distinguish between heavy load from legitimate users and huge number of bogus messages from attackers. As a result, this paper provides a detection mechanism based on a technique of entropy-based input-output traffic mode detection scheme. The experimental results demonstrate that our approach is able to detect several kinds of denial-of-service attacks, even small spike of such attacks. ©2010 IEEE. |
| author2 |
Mahidol University |
| author_facet |
Mahidol University Suratose Tritilanunt Suphannee Sivakorn Choochern Juengjincharoen Ausanee Siripornpisan |
| format |
Conference or Workshop Item |
| author |
Suratose Tritilanunt Suphannee Sivakorn Choochern Juengjincharoen Ausanee Siripornpisan |
| author_sort |
Suratose Tritilanunt |
| title |
Entropy-based input-output traffic mode detection scheme for DoS/DDoS attacks |
| title_short |
Entropy-based input-output traffic mode detection scheme for DoS/DDoS attacks |
| title_full |
Entropy-based input-output traffic mode detection scheme for DoS/DDoS attacks |
| title_fullStr |
Entropy-based input-output traffic mode detection scheme for DoS/DDoS attacks |
| title_full_unstemmed |
Entropy-based input-output traffic mode detection scheme for DoS/DDoS attacks |
| title_sort |
entropy-based input-output traffic mode detection scheme for dos/ddos attacks |
| publishDate |
2018 |
| url |
https://repository.li.mahidol.ac.th/handle/123456789/28971 |
| _version_ |
1763497078869196800 |