An Experimental Detection of Distributed Denial of Service Attack in CDX 3 Platform Based on Snort

被引:4
作者
Chen, Chin-Ling [1 ]
Lai, Jian Lin [1 ]
机构
[1] Natl Pingtung Univ, Dept Informat Management, Pingtung 900, Taiwan
来源
SENSORS | 2023年 / 23卷 / 13期
关键词
DDoS; intrusion detection system; internet security; cloud computing;
D O I
10.3390/s23136139
中图分类号
O65 [分析化学];
学科分类号
070302 ; 081704 ;
摘要
Distributed Denial of Service (DDoS) attacks pose a significant threat to internet and cloud security. Our study utilizes a Poisson distribution model to efficiently detect DDoS attacks with a computational complexity of O(n). Unlike Machine Learning (ML)-based algorithms, our method only needs to set up one or more Poisson models for legitimate traffic based on the granularity of the time periods during preprocessing, thus eliminating the need for training time. We validate this approach with four virtual machines on the CDX 3.0 platform, each simulating different aspects of DDoS attacks for offensive, monitoring, and defense evaluation purposes. The study further analyzes seven diverse DDoS attack methods. When compared with existing methods, our approach demonstrates superior performance, highlighting its potential effectiveness in real-world DDoS attack detection.
引用
收藏
页数:19
相关论文
共 21 条
  • [1] Abbas N., 2021, P 2021 3 IEEE MIDDL
  • [2] Preventing DDoS attacks in Path Identifiers-Based Information Centric Networks
    Al-Duwairi, Basheer
    Ozkasap, Oznur
    [J]. NOMS 2020 - PROCEEDINGS OF THE 2020 IEEE/IFIP NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM 2020: MANAGEMENT IN THE AGE OF SOFTWARIZATION AND ARTIFICIAL INTELLIGENCE, 2020,
  • [3] Al'aziz Bram Andika Ahmad, 2020, 2020 6th Information Technology International Seminar (ITIS), P41, DOI 10.1109/ITIS50118.2020.9320996
  • [4] LIBSVM: A Library for Support Vector Machines
    Chang, Chih-Chung
    Lin, Chih-Jen
    [J]. ACM TRANSACTIONS ON INTELLIGENT SYSTEMS AND TECHNOLOGY, 2011, 2 (03)
  • [5] Cimpanu C., 2020, AWS said it mitigated a 2.3 Tbps DDoS attack
  • [6] Cimpanu C., 2020, ZDNET
  • [7] Cyber Defense eXercise (CDX), US
  • [8] Empirical Evaluation of the Ensemble Framework for Feature Selection in DDoS Attack
    Das, Saikat
    Venugopal, Deepak
    Shiva, Sajjan
    Sheldon, Frederick T.
    [J]. 2020 7TH IEEE INTERNATIONAL CONFERENCE ON CYBER SECURITY AND CLOUD COMPUTING (CSCLOUD 2020)/2020 6TH IEEE INTERNATIONAL CONFERENCE ON EDGE COMPUTING AND SCALABLE CLOUD (EDGECOM 2020), 2020, : 56 - 61
  • [9] Habib Beenish, 2019, 2019 4th International Conference on Information Systems and Computer Networks (ISCON), P546, DOI 10.1109/ISCON47742.2019.9036183
  • [10] A Defense Method against Distributed Slow HTTP DoS Attack
    Hirakawa, Tetsuya
    Ogura, Kanayo
    Bista, Bhed Bahadur
    Takata, Toyoo
    [J]. PROCEEDINGS OF 2016 19TH INTERNATIONAL CONFERENCE ON NETWORK-BASED INFORMATION SYSTEMS (NBIS), 2016, : 152 - +
123