Distinguishing Flooding Distributed Denial of Service from Flash Crowds Using Four Data Mining Approaches

被引：1

作者：

Kong, Bin ^{[1
,2
]}

Yang, Kun ^{[4
,5
]}

Sun, Degang ^{[4
,5
]}

Li, Meimei ^{[3
,4
,5
]}

Shi, Zhixin ^{[4
,5
]}

机构：

[1] Beijing Jiaotong Univ, Sch Econ & Management, Beijing, Peoples R China

[2] Natl Secrecy Sci & Technol Evaluat Ctr, Beijing, Peoples R China

[3] Beijing Jiaotong Univ, Sch Comp & Informat Technol, Beijing, Peoples R China

[4] Chinese Acad Sci, Inst Informat Engn, Beijing, Peoples R China

[5] Univ Chinese Acad Sci, Sch Cyber Secur, Beijing, Peoples R China

来源：

COMPUTER SCIENCE AND INFORMATION SYSTEMS | 2017年 / 14卷 / 03期

基金：

中国国家自然科学基金;

关键词：

Flooding DDoS; Flash Crowds; Data Mining; Entropy; DDOS ATTACKS; TRENDS;

D O I：

10.2298/CSIS161230032K

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Flooding Distributed Denial of Service (DDoS) attacks can cause significant damage to Internet. These attacks have many similarities to Flash Crowds (FCs) and are always difficult to distinguish. To solve this issue, this paper first divides existing methods into two categories to clarify existing researches. Moreover, after conducting an extensive analysis, a new feature set is concluded to profile DDoS and FC. Along with this feature set, this paper proposes a new method that employs Data Mining approaches to discriminate between DDoS attacks and FCs. Experiments are conducted to evaluate the proposed method based on two realworld datasets. The results demonstrate that the proposed method could achieve a high accuracy (more than 98%). Additionally, compared with a traditional entropy method, the proposed method still demonstrates better performance.

引用

页码：839 / 856

页数：18

共 28 条

[1] A Multimetric Approach for Discriminating Distributed Denial of Service Attacks from Flash Crowds
Elhadef, Mourad
[J]. ADVANCED MULTIMEDIA AND UBIQUITOUS ENGINEERING: FUTURE INFORMATION TECHNOLOGY, VOL 2, 2016, 354 : 17 - 23
[2] Detecting Distributed Denial of Service Attacks Using Data Mining Techniques
Alkasassbeh, Mouhammd
Al-Naymat, Ghazi
Hassanat, Ahmad B. A.
Almseidin, Mohammad
[J]. INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS, 2016, 7 (01) : 436 - 445
[3] Distinguishing DDoS Attacks from Flash Crowds Using Probability Metrics
Li, Ke
Zhou, Wanlei
Li, Ping
Hai, Jing
Liu, Jianwen
[J]. NSS: 2009 3RD INTERNATIONAL CONFERENCE ON NETWORK AND SYSTEM SECURITY, 2009, : 9 - 17
[4] Distributed denial of service (DDoS) attack detection using data mining approach in cloud-assisted wireless body area networks
Latif, Rabia
Abbas, Haider
Latif, Seemab
[J]. INTERNATIONAL JOURNAL OF AD HOC AND UBIQUITOUS COMPUTING, 2016, 23 (1-2) : 24 - 35
[5] HONEYDOS: a hybrid approach using data mining and honeypot to counter denial of service attack and malicious packets
Sharma P.
Nagpal B.
[J]. International Journal of Information Technology, 2022, 14 (2) : 837 - 846
[6] Protection from distributed denial of service attacks using history-based IP filtering
Peng, T
Leckie, C
Ramamohanarao, K
[J]. 2003 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS, VOLS 1-5: NEW FRONTIERS IN TELECOMMUNICATIONS, 2003, : 482 - 486
[7] Towards a Multiagent-Based Distributed Intrusion Detection System Using Data Mining Approaches
Brahmi, Imen
Ben Yahia, Sadok
Aouadi, Hamed
Poncelet, Pascal
[J]. AGENTS AND DATA MINING INTERACTION, 2012, 7103 : 173 - +
[8] MINING OF ASSOCIATION RULES FROM DISTRIBUTED DATA USING MOBILE AGENTS
Hu, Gongzhu
Ding, Shaozhen
[J]. ICE-B 2009: PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON E-BUSINESS, 2009, : 21 - 26
[9] Determination of households benefits from subsidies by using data mining approaches
Alavi, S. Mahsa A.
Ebadati, Omid Mahdi E.
Alavi, S. Masoud A.
Sarnaghi, Towhid Firoozan
[J]. JOURNAL OF INFORMATION TECHNOLOGY & POLITICS, 2023, 20 (03) : 303 - 322
[10] Design for data ethics: using service design approaches to operationalize ethical principles on four projects
Drew, Cat
[J]. PHILOSOPHICAL TRANSACTIONS OF THE ROYAL SOCIETY A-MATHEMATICAL PHYSICAL AND ENGINEERING SCIENCES, 2018, 376 (2128):

← 1 2 3 →