Bound Maxima as a Traffic Feature under DDOS Flood Attacks

Bound Maxima as a Traffic Feature under DDOS Flood Attacks

This paper gives a novel traffic feature for identifying abnormal variation of traffic under DDOS flood attacks. It is the histogram of the maxima of the bounded traffic rate on an interval-by-interval basis. We use it to experiment on the traffic data provided by MIT Lincoln Laboratory under Defens...

Full description

Bibliographic Details
Main Authors: Jie Xue, Ming Li, Wei Zhao, Sheng-Yong Chen
Format: Article
Language:English
Published: Hindawi Limited 2012-01-01
Series:Mathematical Problems in Engineering
Online Access:http://dx.doi.org/10.1155/2012/419319
id doaj-7feb0a3276f9443585d1504b5e61f66e
record_format Article
spelling doaj-7feb0a3276f9443585d1504b5e61f66e2020-11-24T22:59:14ZengHindawi LimitedMathematical Problems in Engineering1024-123X1563-51472012-01-01201210.1155/2012/419319419319Bound Maxima as a Traffic Feature under DDOS Flood AttacksJie Xue0Ming Li1Wei Zhao2Sheng-Yong Chen3Jiangsu Electronic Information Products Quality Supervision & Inspection Research Institute, China National Center for Quality Supervision and Test for the Internet of Things Products & Systems, No. 100, Jin-Shui Road, Wuxi 214073, ChinaSchool of Information Science & Technology, East China Normal University, No. 500, Dong-Chuan Road, Shanghai 200241, ChinaDepartment of Computer and Information Science, University of Macau Av. Padre Tomas Pereira, Taipa, Macau SAR, P.R., ChinaCollege of Computer Science, Zhejiang University of Technology, Hangzhou 310023, ChinaThis paper gives a novel traffic feature for identifying abnormal variation of traffic under DDOS flood attacks. It is the histogram of the maxima of the bounded traffic rate on an interval-by-interval basis. We use it to experiment on the traffic data provided by MIT Lincoln Laboratory under Defense Advanced Research Projects Agency (DARPA) in 1999. The experimental results profitably enhance the evidences that traffic rate under DDOS attacks is statistically higher than that of normal traffic considerably. They show that the pattern of the histogram of the maxima of bounded rate of attack-contained traffic greatly differs from that of attack-free traffic. Besides, the present traffic feature is simple in mathematics and easy to use in practice.http://dx.doi.org/10.1155/2012/419319
collection DOAJ
language English
format Article
sources DOAJ
author Jie Xue
Ming Li
Wei Zhao
Sheng-Yong Chen
spellingShingle Jie Xue
Ming Li
Wei Zhao
Sheng-Yong Chen
Bound Maxima as a Traffic Feature under DDOS Flood Attacks
Mathematical Problems in Engineering
author_facet Jie Xue
Ming Li
Wei Zhao
Sheng-Yong Chen
author_sort Jie Xue
title Bound Maxima as a Traffic Feature under DDOS Flood Attacks
title_short Bound Maxima as a Traffic Feature under DDOS Flood Attacks
title_full Bound Maxima as a Traffic Feature under DDOS Flood Attacks
title_fullStr Bound Maxima as a Traffic Feature under DDOS Flood Attacks
title_full_unstemmed Bound Maxima as a Traffic Feature under DDOS Flood Attacks
title_sort bound maxima as a traffic feature under ddos flood attacks
publisher Hindawi Limited
series Mathematical Problems in Engineering
issn 1024-123X
1563-5147
publishDate 2012-01-01
description This paper gives a novel traffic feature for identifying abnormal variation of traffic under DDOS flood attacks. It is the histogram of the maxima of the bounded traffic rate on an interval-by-interval basis. We use it to experiment on the traffic data provided by MIT Lincoln Laboratory under Defense Advanced Research Projects Agency (DARPA) in 1999. The experimental results profitably enhance the evidences that traffic rate under DDOS attacks is statistically higher than that of normal traffic considerably. They show that the pattern of the histogram of the maxima of bounded rate of attack-contained traffic greatly differs from that of attack-free traffic. Besides, the present traffic feature is simple in mathematics and easy to use in practice.
url http://dx.doi.org/10.1155/2012/419319
work_keys_str_mv AT jiexue boundmaximaasatrafficfeatureunderddosfloodattacks
AT mingli boundmaximaasatrafficfeatureunderddosfloodattacks
AT weizhao boundmaximaasatrafficfeatureunderddosfloodattacks
AT shengyongchen boundmaximaasatrafficfeatureunderddosfloodattacks
_version_ 1725645307031584768

Similar Items