Entity-based Parameterization for Distinguishing Distributed Denial of Service from Flash Events

Autor: Wan Nor Shuhadah Wan Nik, Norziana Jamil, Abd Rasid Mamat, Marina Md Din, Ahmad Faisal Amri Abidin, Mohamad Afendee Mohamed
Rok vydání: 2018
Předmět:
Zdroj: International Journal of Engineering & Technology. 7:5
ISSN: 2227-524X
DOI: 10.14419/ijet.v7i2.14.11142
Popis: In a perfect condition, there are only normal network traffic and sometimes flash event traffics due to some eye-catching or heart-breaking events. Nevertheless, both events carry legitimate requests and contents to the server. Flash event traffic can be massive and damaging to the availability of the server. However, it can easily be remedied by hardware solutions such as adding extra processing power and memory devices and software solution such as load balancing. In contrast, a collection of illegal traffic requests produced during distributed denial of service (DDoS) attack tries to cause damage to the server and thus is considered as dangerous where prevention, detection and reaction are imminent in case of occurrence. In this paper, the detection of attacks by distinguishing it from legal traffic is of our main concern. Initially, we categorize the parameters involved in the attacks in relation to their entities. Further, we examine different concepts and techniques from information theory and image processing domain that takes the aforementioned parameters as input and in turn decides whether an attack has occurred. In addition to that, we also pointed out the advantages for each technique, as well as any possible weakness for possible future works.
Databáze: OpenAIRE