A DDoS Detection Method Over Radio Interfaces Based on Multiple Physical Layer Attributes

被引:0
|
作者
Tian, Yuhan [1 ]
Li, Na [1 ]
Tao, Xiaofeng [1 ]
Xia, Shida [2 ]
机构
[1] Beijing Univ Posts & Telecommun, Natl Engn Res Ctr Mobile Network Technol, Beijing 100876, Peoples R China
[2] China Acad Informat & Commun Technol, Beijing, Peoples R China
来源
2024 IEEE 99TH VEHICULAR TECHNOLOGY CONFERENCE, VTC2024-SPRING | 2024年
关键词
Distributed-Denial-of-Service attack; Carrier Frequency Offset; Time Advance; Detection; Clustering;
D O I
10.1109/VTC2024-SPRING62846.2024.10683633
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
With the rapid development of Internet of Things (IoT) technologies, increasing number of IoT devices are connected to the wireless network. Random access (RA) is the necessary initial step in establishing a connection. However, the RA process is vulnerable to various attacks due to the openness of the wireless environment. Distributed denial of service (DDoS) is one of the leading attacks significantly violating the usability of wireless networks. Traditional security methods are set up after the RA process and thus can neither detect the RA-oriented attacks nor protect RA from being attacked. In this paper, we consider a typical RA-oriented DDoS attack in which a large number of preambles are illegally occupied to prevent the normal access of legitimate users. We propose a DDoS detection method based on multiple physical layer attributes. The time advance (TA) calculated from the preamble sequences and the carrier frequency offset (CFO) extracted from the preamble signals are jointly utilized to describe the characteristics of different accessing devices. A density-based spatial clustering of applications with noise (DBSCAN) based algorithm is proposed. Simulation results show that the proposed method can detect DDoS attacks with a false alarm rate of 0.6% and a miss detection rate of 0% within 1s. Compared with different benchmarks, the method shows better time efficiency and higher identification accuracy. It can reduce the access failure rate by 40% when the attack situation is relatively mild and can reduce the access failure rate by 61% when the attack situation is relatively serious.
引用
收藏
页数:6
相关论文
共 50 条
  • [31] WEB DDoS Attack Detection Method Based on Semisupervised Learning
    Yu, Xiang
    Yu, Wenchao
    Li, Shudong
    Yang, Xianfei
    Chen, Ying
    Lu, Hui
    SECURITY AND COMMUNICATION NETWORKS, 2021, 2021
  • [32] DDoS Attack Detection Method Based on Linear Prediction Model
    Cheng, Jieren
    Yin, Jianping
    Wu, Chengkun
    Zhang, Boyun
    Liu, Yun
    EMERGING INTELLIGENT COMPUTING TECHNOLOGY AND APPLICATIONS, PROCEEDINGS, 2009, 5754 : 1004 - +
  • [33] A CGAN-based DDoS Attack Detection Method in SDN
    Liu
    Luo
    Jiang
    Wang
    Li
    Jia
    IWCMC 2021: 2021 17TH INTERNATIONAL WIRELESS COMMUNICATIONS & MOBILE COMPUTING CONFERENCE (IWCMC), 2021, : 1030 - 1034
  • [34] ALDD: A Hybrid Traffic-User Behavior Detection Method for Application Layer DDoS
    Jiang, Jianguo
    Yu, Qian
    Yu, Min
    Li, Gang
    Chen, Jiuming
    Liu, Kunying
    Liu, Chao
    Huang, Weiqing
    2018 17TH IEEE INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (IEEE TRUSTCOM) / 12TH IEEE INTERNATIONAL CONFERENCE ON BIG DATA SCIENCE AND ENGINEERING (IEEE BIGDATASE), 2018, : 1565 - 1569
  • [35] DDOS Attack Detection System based on Analysis of Users' Behaviors for Application Layer
    Bi Meng
    Wang Andi
    Xu Jian
    Zhou Fucai
    2017 IEEE INTERNATIONAL CONFERENCE ON COMPUTATIONAL SCIENCE AND ENGINEERING (CSE) AND IEEE/IFIP INTERNATIONAL CONFERENCE ON EMBEDDED AND UBIQUITOUS COMPUTING (EUC), VOL 1, 2017, : 596 - 599
  • [36] Application Layer DDoS Detection Model Based on Data Flow Aggregation and Evaluation
    Zhang, Mi
    Zhang, Wei
    Fan, Kuan
    COMMUNICATIONS AND INFORMATION PROCESSING, PT 2, 2012, 289 : 37 - 45
  • [37] A novel DDoS detection method using multi-layer stacking in SDN environment
    Alasali, Tasnim
    Dakkak, Omar
    COMPUTERS & ELECTRICAL ENGINEERING, 2024, 120
  • [38] Physical Layer Security in Underlay Cognitive Radio Networks Over α - μ Fading Channels
    Yadav, Suneel
    Gurjar, Devendra S.
    2020 IEEE LATIN-AMERICAN CONFERENCE ON COMMUNICATIONS (LATINCOM 2020), 2020,
  • [39] DDoS Detection Method Based on Chaos Analysis of Network Traffic Entropy
    Ma, Xinlei
    Chen, Yonghong
    IEEE COMMUNICATIONS LETTERS, 2014, 18 (01) : 114 - 117
  • [40] Edge DDoS Attack Detection Method Based on Software Defined Networks
    Ren, Gangsheng
    Zhang, Yang
    Zhang, Shukui
    Long, Hao
    ALGORITHMS AND ARCHITECTURES FOR PARALLEL PROCESSING, ICA3PP 2021, PT I, 2022, 13155 : 597 - 611