An Experimental Detection of Distributed Denial of Service Attack in CDX 3 Platform Based on Snort

被引:4
作者
Chen, Chin-Ling [1 ]
Lai, Jian Lin [1 ]
机构
[1] Natl Pingtung Univ, Dept Informat Management, Pingtung 900, Taiwan
关键词
DDoS; intrusion detection system; internet security; cloud computing;
D O I
10.3390/s23136139
中图分类号
O65 [分析化学];
学科分类号
070302 ; 081704 ;
摘要
Distributed Denial of Service (DDoS) attacks pose a significant threat to internet and cloud security. Our study utilizes a Poisson distribution model to efficiently detect DDoS attacks with a computational complexity of O(n). Unlike Machine Learning (ML)-based algorithms, our method only needs to set up one or more Poisson models for legitimate traffic based on the granularity of the time periods during preprocessing, thus eliminating the need for training time. We validate this approach with four virtual machines on the CDX 3.0 platform, each simulating different aspects of DDoS attacks for offensive, monitoring, and defense evaluation purposes. The study further analyzes seven diverse DDoS attack methods. When compared with existing methods, our approach demonstrates superior performance, highlighting its potential effectiveness in real-world DDoS attack detection.
引用
收藏
页数:19
相关论文
共 21 条
  • [11] Detecting TCP-based DDoS Attacks in Baidu Cloud Computing Data Centers
    Jiao, Jiahui
    Ye, Benjun
    Zhao, Yue
    Stones, Rebecca J.
    Wang, Gang
    Liu, Xiaoguang
    Wang, Shaoyan
    Xie, Guangjun
    [J]. 2017 IEEE 36TH INTERNATIONAL SYMPOSIUM ON RELIABLE DISTRIBUTED SYSTEMS (SRDS), 2017, : 256 - 258
  • [12] Kokila RT, 2014, INT CONF ADV COMPU, P205, DOI 10.1109/ICoAC.2014.7229711
  • [13] Kottler S., 2018, GITHUB BLOG
  • [14] Nandi Suman, 2020, 2020 Third ISEA Conference on Security and Privacy (ISEA-ISAP), P41, DOI 10.1109/ISEA-ISAP49340.2020.234999
  • [15] Intrusion Detection System Model Implementation against DDOS attacks
    Nenova, Maria
    Atanasov, Denis
    Kassev, Kiril
    Nenov, Andon
    [J]. 2019 IEEE INTERNATIONAL CONFERENCE ON MICROWAVES, ANTENNAS, COMMUNICATIONS AND ELECTRONIC SYSTEMS (COMCAS), 2019,
  • [16] Combating DDoS Attacks with Fair Rate Throttling
    Nur, Abdullah Yasin
    [J]. 2021 15TH ANNUAL IEEE INTERNATIONAL SYSTEMS CONFERENCE (SYSCON 2021), 2021,
  • [17] Radain D., 2021, P 2021 INT C WOMEN D, P1
  • [18] Shortle J. F, 2018, Fundamentals of queueing theory, V399
  • [19] Distributed Denial-of-Service (DDoS) Attacks and Defense Mechanisms in Various Web-Enabled Computing Platforms: Issues, Challenges, and Future Research Directions
    Singh, Anshuman
    Gupta, Brij B.
    [J]. INTERNATIONAL JOURNAL ON SEMANTIC WEB AND INFORMATION SYSTEMS, 2022, 18 (01)
  • [20] Vira Yudha Garand, 2021, 2021 9th International Conference on Information and Communication Technology (ICoICT), P556, DOI 10.1109/ICoICT52021.2021.9527511