RT-SAD: Real-Time Sketch-Based Adaptive DDoS Detection for ISP Network

被引：0

作者：

Shi, Haibin ^{[1
,2
]}

Cheng, Guang ^{[1
,2
]}

Hu, Ying ^{[1
,2
]}

Wang, Fuzhou ^{[1
,2
]}

Ding, Haoxuan ^{[1
,2
]}

机构：

[1] Southeast Univ, Sch Cyber Sci & Engn, Nanjing 211189, Peoples R China

[2] Southeast Univ, Key Lab Comp Network & Informat Integrat, Minist Educ, Nanjing 21189, Peoples R China

来源：

SECURITY AND COMMUNICATION NETWORKS | 2021年 / 2021卷

关键词：

Denial-of-service attack - Internet service providers - Network topology;

D O I：

10.1155/2021/9409473

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

With the great changes in network scale and network topology, the difficulty of DDoS attack detection increases significantly. Most of the methods proposed in the past rarely considered the real-time, adaptive ability, and other practical issues in the real-world network attack detection environment. In this paper, we proposed a real-time adaptive DDoS attack detection method RT-SAD, based on the response to the external network when attacked. We designed a feature extraction method based on sketch and an adaptive updating algorithm, which makes the method suitable for the high-speed network environment. Experiment results show that our method can detect DDoS attacks using sampled Netflowunder high-speed network environment, with good real-time performance, low resource consumption, and high detection accuracy.

引用

页数：10

共 50 条

[31] On the adaptive real-time detection of fast-propagating network worms
Jung, Jaeyeon
Milito, Rodolfo A.
Paxson, Vern
DETECTION OF INTRUSIONS AND MALWARE, AND VULNERABILITY ASSESSMENT, PROCEEDINGS, 2007, 4579 : 175 - 192
[32] ADAPTIVE REAL-TIME WAVELET DETECTION
COHEN, A
LANDSBERG, D
IEEE TRANSACTIONS ON BIOMEDICAL ENGINEERING, 1983, 30 (06) : 332 - 340
[33] Euclid: A Fully In-Network, P4-Based Approach for Real-Time DDoS Attack Detection and Mitigation
Ilha, Alexandre da Silveira
Lapolli, Angelo Cardoso
Marques, Jonatas Adilson
Gaspary, Luciano Paschoal
IEEE TRANSACTIONS ON NETWORK AND SERVICE MANAGEMENT, 2021, 18 (03): : 3121 - 3139
[34] Research on Real-Time Flow Abnormal Traffic Detection System Based on DDoS Attack
Yue, Xin
Mo, Xiuliang
Wang, Chundong
Yao, Xin
RECENT DEVELOPMENTS IN INTELLIGENT SYSTEMS AND INTERACTIVE APPLICATIONS (IISA2016), 2017, 541 : 206 - 212
[35] Real-time fish detection based on improved adaptive background
Zhou Hongbin
Xiao Gang
Chen Jiujun
Gao Fei
Ying Xiaofang
WSEAS: ADVANCES ON APPLIED COMPUTER AND APPLIED COMPUTATIONAL SCIENCE, 2008, : 330 - +
[36] Real-time adaptive obstacle detection based on an image database
Morales, Nestor
Toledo, Jonay T.
Acosta, Leopoldo
Arnay, Rafael
COMPUTER VISION AND IMAGE UNDERSTANDING, 2011, 115 (09) : 1273 - 1287
[37] Real-time Packet Loss Detection for TCP and UDP Based on Feature-Sketch
Wu, Hua
Liu, Ya
Cheng, Guang
Hu, Xiaoyan
IEEE CONFERENCE ON COMPUTER COMMUNICATIONS WORKSHOPS (IEEE INFOCOM WKSHPS 2021), 2021,
[38] Sketch-based Streaming PCA Algorithm for Network-wide Traffic Anomaly Detection
Liu, Yang
Zhang, Linfeng
Guan, Yong
2010 INTERNATIONAL CONFERENCE ON DISTRIBUTED COMPUTING SYSTEMS ICDCS 2010, 2010,
[39] A Sketch-Based Interface for 2D Illustration of Vascular Structures, Diseases, and Treatment Options with Real-Time Blood Flow
Saalfeld, Patrick
Baer, Alexandra
Preim, Uta
Preim, Bernhard
Lawonn, Kai
COMPUTER VISION, IMAGING AND COMPUTER GRAPHICS THEORY AND APPLICATIONS, 2016, 598 : 19 - 40
[40] Real-time DDoS flooding attack detection in intelligent transportation systems
Karthikeyan, H.
Usha, G.
COMPUTERS & ELECTRICAL ENGINEERING, 2022, 101

← 1 2 3 4 5 →