Skip to Main Content

IEEE.org| IEEE Xplore Digital Library| IEEE Standards| IEEE Spectrum| More Sites

Cart (Loading....) | Create Account | Sign In

Author Search^beta | Advanced Search | Preferences | | More Search Options

Browse Conference Publications > Military Communications Confe ...

LD²: A system for lightweight detection of denial-of-service attacks

Full Text Sign-In or Purchase

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Username

Password

Purchase PDF
Other Formats

Formats	Non-Member	Member
PDF	$31	$13

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

Already Purchased? View Article
Subscription Options Learn More

3 Author(s)

Pukkawanna, S. ; Nat. Electron. & Comput. Technol. Center, Pathumthani ; Pongpaibool, P. ; Visoottiviseth, V.

This paper proposes a system for lightweight detection of DoS attacks, called LD². Our system detects attack activities by observing flow behaviors and matching them with graphlets for each attack type. The proposed system is lightweight because it does not analyze packet content nor packet statistics. We benchmark performance of LD², in terms of detection accuracy and complexity against Snort, a popular open-source IDS software. Our evaluations focus on six types of DoS attacks, namely SYN flood, UDP flood, ICMP flood, Smurf, port scan, and host scan. Results show that LD² can accurately identify all occurrences and all hosts associated with attack activities. Although LD² uses higher CPU cycles than Snort, it consumes much less memory than Snort.

Published in:
Military Communications Conference, 2008. MILCOM 2008. IEEE

Date of Conference: 16-19 Nov. 2008

Page(s):: 1 - 7
E-ISBN :: 978-1-4244-2677-5
Print ISBN:: 978-1-4244-2676-8
INSPEC Accession Number:: 10466175

Conference Location :: San Diego, CA
Digital Object Identifier :: 10.1109/MILCOM.2008.4753369

Author(s)

Pukkawanna, S.
Nat. Electron. & Comput. Technol. Center, Pathumthani
Pongpaibool, P. ; Visoottiviseth, V.

INSPEC: CONTROLLED INDEXING

Internet

security of data

telecommunication services

INSPEC: NON CONTROLLED INDEXING

DoS attacks

ICMP flood

LD²

SYN flood

Smurf

Snort

UDP flood

denial-of-service attacks

open-source IDS software

IEEE TERMS

Bandwidth

Computer crime

Floods

Intrusion detection

Monitoring

Open source software

Software performance

Statistical analysis

Telecommunication traffic

Web and internet services

Referenced Items are not available for this document.

No versions found for this document.

Standards Dictionary Terms are available to subscribers only.

| Create Account

IEEE Account

Purchase Details

Profile Information

Need Help?

US & Canada: +1 800 678 4333
Worldwide: +1 732 981 0060
Contact & Support

IEEE Advancing Technology for Humanity

About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.