Abstract | ||
---|---|---|
Distributed Denial-of-Service (DDoS) attacks pose a serious threat to Internet security. Most current research focuses on detection and prevention methods on the victim server or source side. To date, there has been no work on defenses using valuable information from the innocent client whose IP has been used in attacking packets. In this paper, we propose a novel cooperative system for producing warning of a DDoS attack. The system consists of a client detector and a server detector. The client detector is placed on the innocent client side and uses a Bloom filter-based detection scheme to generate accurate detection results yet consumes minimal storage and computational resources. The server detector can actively assist the warning process by sending requests to innocent hosts. Simulation results show that the cooperative technique presented in this paper can yield accurate DDoS alarms at an early stage. We theoretically show the false alarm probability of the detection scheme, which is insensitive to false alarms when using specially designed evaluation functions. |
Year | DOI | Venue |
---|---|---|
2006 | 10.1007/s11227-006-8295-0 | The Journal of Supercomputing |
Keywords | Field | DocType |
DDoS Attack,Cooperative Detection,Bloom Filter | Client-side,Bloom filter,Internet security,False alarm,Denial-of-service attack,Computer science,Computer security,Network packet,Computer network,Constant false alarm rate,Application layer DDoS attack,Distributed computing | Journal |
Volume | Issue | ISSN |
36 | 3 | 0920-8542 |
Citations | PageRank | References |
10 | 0.57 | 22 |
Authors | ||
3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Bin Xiao | 1 | 1763 | 129.31 |
Wei Chen | 2 | 86 | 12.45 |
Yanxiang He | 3 | 568 | 68.23 |