A nonparametric adaptive CUSUM method and its application in source-end defense against SYN flooding attacks |
| |
Authors: | Ming Yu |
| |
Institution: | YU Ming School of Information and Communication Engineering,Da-lian University of Technology,Dalian 116024,Liaoning,China |
| |
Abstract: | Combating DDoS attacks at their sources is still in its infancy. In this paper, a nonparametric adaptive CUSUM (cumulative
sum) method is presented, which is proven efficient in detecting SYN flooding attacks close to their sources. Different from
other CUSUM methods, this new method has two distinct features: ➀ its detection threshold can adapt itself to various traffic
conditions and ➁ it can timely detect the end of an attack within a required delay. Trace-driven simulations are conducted
to validate the efficacy of this method in detecting SYN flooding attacks, and the results show that the nonparametric adaptive
CUSUM method excels in detecting low-rate attacks. |
| |
Keywords: | adaptive detection nonparametric algorithm CUSUM (cumulative sum) SYN flooding DDoS |
本文献已被 CNKI SpringerLink 等数据库收录! |
|