Please use this identifier to cite or link to this item:
https://open.uns.ac.rs/handle/123456789/924
Title: | A practical approach to detection of distributed denial-of-service attacks using a hybrid detection method | Authors: | Bojović P. Bašičević, Ilija Ocovaj S. Popović, Miroslav |
Issue Date: | 1-Jan-2019 | Journal: | Computers and Electrical Engineering | Abstract: | © 2018 Elsevier Ltd This paper presents a hybrid method for the detection of distributed denial-of-service (DDoS) attacks that combines feature-based and volume-based detection. Our approach is based on an exponential moving average algorithm for decision-making, applied to both entropy and packet number time series. The approach has been tested by performing a controlled DDoS experiment in a real academic network. The network setup and test scenarios including both high-rate and low-rate attacks are described in the paper. The performance of the proposed method is compared to the performance of two methods that are already known in the literature. One is based on the counting of SYN packets and is used for detection of SYN flood attacks, while the other is based on a CUSUM algorithm applied to the entropy time series. The results show the advantage of our approach compared to methods that are based on either entropy or number of packets only. | URI: | https://open.uns.ac.rs/handle/123456789/924 | ISSN: | 457906 | DOI: | 10.1016/j.compeleceng.2018.11.004 |
Appears in Collections: | FTN Publikacije/Publications |
Show full item record
SCOPUSTM
Citations
45
checked on May 3, 2024
Page view(s)
19
Last Week
7
7
Last month
0
0
checked on May 10, 2024
Google ScholarTM
Check
Altmetric
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.