CoDe - An collaborative detection algorithm for DDoS attacks

Security threats for the network services have been constantly increasing day by day. Distributed denial of service (DDoS) attack is one such kind of security threat which involves multiple systems generating a large amount of traffic towards a target machine and thereby making any service from that...

Full description

Saved in:
Bibliographic Details
Main Authors: Shalinie, S. M., Kumar, M. P. M., Karthikeyan, M., Sajani, J. D., Nachammai, V. A., Sundarakantham, K., Mallikarjunan, K. N.
Format: Conference Proceeding
Language:English
Subjects:
Computer crime
DDoS
Detection algorithms
Distributed Change Point Detection
IP networks
Ranking scheme
Routing protocols
Servers
Statistical methods
Traffic control
UDP Flood attack
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Security threats for the network services have been constantly increasing day by day. Distributed denial of service (DDoS) attack is one such kind of security threat which involves multiple systems generating a large amount of traffic towards a target machine and thereby making any service from that target machine or server unavailable to its clients. This threat by nature needs no control over the target system. Traditional methods of detecting DDoS attacks are mostly centralized in nature and highly disadvantageous. To overcome the disadvantages of those schemes, we propose a distributed methodology which involves installing the attack detectors at various parts of the network. Each router in the network will monitor the traffic flowing through it and if any anomaly in the traffic pattern is detected, it will raise an alarm to the nearby routers. The alarm propagates to all the routers through which the attack flows. By this way a tree like construct is made, which will have information about number of alarms raised and the path of the attack flow. If the construct shows any converging pattern then it is declared as DDoS attack.
DOI:10.1109/ICRTIT.2011.5972338