Fast Detection and Mitigation to DDoS Web Attack based on Access Frequency

被引:0
作者
Tran, Thang M. [1 ]
Khanh-Van Nguyen [1 ]
机构
[1] Hanoi Univ Sci & Technol, Sch Informat Technol & Commun, Hanoi, Vietnam
来源
2019 IEEE - RIVF INTERNATIONAL CONFERENCE ON COMPUTING AND COMMUNICATION TECHNOLOGIES (RIVF) | 2019年
关键词
DDoS Attacks; DDoS Detection and Mitigation; Access Frequency;
D O I
10.1109/rivf.2019.8713762
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
We have been investigating methods for establishing an effective, immediate defense mechanism against the DDoS attacks on Web applications via hacker botnets, in which this defense mechanism can be immediately active without preparation time, e.g. for training data, usually asked for in existing proposals. In this study, we propose a new mechanism, including new data structures and algorithms, that allow the detection and filtering of large amounts of attack packets (Web request) based on monitoring and capturing the suspect groups of source IPs that can be sending packets at similar patterns, i.e. with very high and similar frequencies. The proposed algorithm places great emphasis on reducing storage space and processing time so it is promising to be effective in real-time attack response.
引用
收藏
页码:136 / 141
页数:6
相关论文
共 50 条
[31]   A dynamic MLP-based DDoS attack detection method using feature selection and feedback [J].
Wang, Meng ;
Lu, Yiqin ;
Qin, Jiancheng .
COMPUTERS & SECURITY, 2020, 88 (88)
[32]   ArOMA: An SDN based, autonomic DDoS mitigation framework [J].
Sahay, Rishikesh ;
Blanc, Gregory ;
Zhang, Zonghua ;
Debar, Herue .
COMPUTERS & SECURITY, 2017, 70 :482-499
[33]   A Survey: Network Attack Detection and Mitigation Techniques [J].
Shinde, Om ;
Kulkarni, Varad ;
Patani, Harsh ;
Rajput, Anagha ;
Jaiswal, R. C. .
SMART TRENDS IN COMPUTING AND COMMUNICATIONS, VOL 1, SMARTCOM 2024, 2024, 945 :263-275
[34]   Profile based Scheme against DDoS Attack in WSN [J].
Nigam, Varsha ;
Jain, Saurabh ;
Burse, Kavita .
2014 FOURTH INTERNATIONAL CONFERENCE ON COMMUNICATION SYSTEMS AND NETWORK TECHNOLOGIES (CSNT), 2014, :112-116
[35]   Edmund: Entropy based attack Detection and Mitigation engine Using Netflow Data [J].
Haghighat, Mohammad Hashem ;
Li, Jun .
ICCNS 2018: PROCEEDINGS OF THE 8TH INTERNATIONAL CONFERENCE ON COMMUNICATION AND NETWORK SECURITY, 2018, :1-6
[36]   DDOS attack detection in SDN: Method of attacks, detection techniques, challenges and research gaps [J].
Wabi, Abdullahi Aishatu ;
Idris, Ismaila ;
Olaniyi, Olayemi Mikail ;
Ojeniyi, Joseph A. .
COMPUTERS & SECURITY, 2024, 139
[37]   Timely Detection and Mitigation of Stealthy DDoS Attacks Via IoT Networks [J].
Doshi, Keval ;
Yilmaz, Yasin ;
Uludag, Suleyman .
IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2021, 18 (05) :2164-2176
[38]   DeepDefend: A comprehensive framework for DDoS attack detection and prevention in cloud computing [J].
Ouhssini, Mohamed ;
Afdel, Karim ;
Agherrabi, Elhafed ;
Akouhar, Mohamed ;
Abarda, Abdallah .
JOURNAL OF KING SAUD UNIVERSITY COMPUTER AND INFORMATION SCIENCES, 2024, 36 (02)
[39]   Smart Detection: An Online Approach for DoS/DDoS Attack Detection Using Machine Learning [J].
de Lima Filho, Francisco Sales ;
Silveira, Frederico A. F. ;
Brito Junior, Agostinho de Medeiros ;
Vargas-Solar, Genoveva ;
Silveira, Luiz F. .
SECURITY AND COMMUNICATION NETWORKS, 2019, 2019
[40]   Deep Ensemble Learning With Pruning for DDoS Attack Detection in IoT Networks [J].
Saiyedand, Makhduma F. ;
Al-Anbagi, Irfan .
IEEE TRANSACTIONS ON MACHINE LEARNING IN COMMUNICATIONS AND NETWORKING, 2024, 2 :596-616
12345