|
Title:
|
CHARACTERIZING DDoS ATTACKS WITH TRAFFIC RATE ANALYSIS |
|
Author(s):
|
Cheolho Lee , Sanguk Noh , Kyunghee Choi , Gihyun Jung |
|
ISBN:
|
972-98947-0-1 |
|
Editors:
|
António Palma dos Reis and Pedro Isaías |
|
Year:
|
2003 |
|
Edition:
|
1 |
|
Keywords:
|
Distributed Denial of Service Attacks, Network Security, Network Traffic Analysis . |
|
Type:
|
Full Paper |
|
First Page:
|
81 |
|
Last Page:
|
88 |
|
Language:
|
English |
|
Cover:
|
|
|
Full Contents:
|
click to dowload 
|
|
Paper Abstract:
|
As the complexity of Internet is scaled up, it is likely for Internet resources to be exposed to Distributed Denial of Service (DDoS) attacks. To characterize the pattern of the DDoS network attacks on TCP-based servers, in this paper, we present a network traffic analysis mechanism, called Traffic Rate Analysis (TRA), which computes TCP flag rates and protocol rates under various types of the DDoS attacks. We experiment with the metrics of various ratios of types of packets going in and out of a host. The experimental results showed that the features of the DDoS attacks were distinctive and predictive. We wish the experimental results could be used to detect and prevent a variety of network flooding attacks. |
|
|
|
|
|
|
