- 會議論文
使用統計方法之常態分配來偵測分散式阻斷服務攻擊
Detecting Distributed Denial-of-Service Attacks by Using Statistical Analysis of Normal Distribution
並列摘要
This study proposed a new detection method for DoS attack traffic based on the statistics of arrival rate. We first investigate the statistics of arrival rates of normal packets. Our analytical results show that the arrival rate of normal packets can be can be modeled by normal distribution. We then set up a threshold for maximum arrival rate to detect DoS flood traffic. The experiment results show that the possibilities of both false positives and false negatives are very low. The proposed mechanism is demonstrated to have the capability of detecting DoS attack quickly and accurately.
延伸閱讀
- 曾仁志(2005)。高效率分散式入侵偵測系統的靜態法則分配演算法〔碩士論文,中原大學〕。華藝線上圖書館。https://doi.org/10.6840/cycu200500489
- 陳偉嵩(2004)。分散式阻斷服務攻擊之內部防禦研究〔碩士論文,亞洲大學〕。華藝線上圖書館。https://www.airitilibrary.com/Article/Detail?DocID=U0118-0807200916284200
- 孫維淋、謝欽旭、洪盟峰、繆德澤、林昱文(2019)。植基於機器學習之分散式阻斷服務攻擊偵測。載於國立中山大學(主編),TANET2019 臺灣網際網路研討會(頁830-835)。國立中山大學。https://doi.org/10.6924/TANET.201909.0149
- 蔡孟學(2008)。Detecting Multivariate Normal using Asymptotic Chi-Square Distribution〔碩士論文,中原大學〕。華藝線上圖書館。https://doi.org/10.6840/cycu200800239
- Zhang, Z. H., Shen, H., & Sang, Y. P. (2007). An Observation-Centric Analysis on the Modeling of Anomaly-based Intrusion Detection. International Journal of Network Security, 4(3), 292-305. https://doi.org/10.6633/IJNS.200705.4(3).08