Referenced Items are not available for this document.
Denial of Service (DoS) attacks are ubiquitous to computer networks. Flood based attacks are a common class of DoS attacks. DoS detection mechanisms that aim at detecting floods mainly look for sudden changes in the traffic and mark them anomalous. In this paper, we propose a method that considers the traffic in a network as a time-series and smoothens it using exponential moving average and analyzes the smoothened wave using energy distribution based on wavelet analysis. The parameters we used to represent the traffic are number of bytes received per unit time and the proportion between incoming and outgoing bytes. By analyzing the energy distribution in the wavelet form of a smoothened time-series, growth in the traffic, which is the result of a DoS attack can be detected very early. As the parameters we considered represent different properties of the network, the accuracy of the detection will be very high and with less false positives.
Published in:
Information Assurance and Security, 2007. IAS 2007. Third International Symposium on
Date of Conference: 29-31 Aug. 2007
- Page(s):
- 215 - 220
- E-ISBN :
- 978-0-7695-2876-2
- Print ISBN:
- 0-7695-2876-7
- INSPEC Accession Number:
- 9874515
- Conference Location :
- Manchester
- Digital Object Identifier :
- 10.1109/IAS.2007.16
- Product Type:
- Conference Publications
About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies
A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.
