完整後設資料紀錄
DC 欄位語言
dc.contributor.authorChen, Hsia-Hsiangen_US
dc.contributor.authorHuang, Shih-Kunen_US
dc.date.accessioned2017-04-21T06:56:38Z-
dc.date.available2017-04-21T06:56:38Z-
dc.date.issued2016-07en_US
dc.identifier.issn1016-2364en_US
dc.identifier.urihttp://hdl.handle.net/11536/133903-
dc.description.abstractInternet service providers and equipment vendors are subject to cyber threats. One of the most prevalent security threats is the distributed denial of service (DDoS) attack. In a DDoS attack, the attack traffic and attacker\'s IP address are respectively difficult to detect and trace. This is because attack traffic is similar to regular traffic and the attack is executed by multiple attackers. This study focused on solving the low-rate distributed denial of service (LDDoS) problem; this problem is difficult to detect and trace compared with a DDoS attack. We therefore propose a novel distributed detection and identification ant colony system (DDIACS) framework, which is an ant-colony-optimization based metaheuristic technique, for solving the LDDoS problem. The DDIACS framework comprises three stages, which entail an information heuristic rule, a multiagent algorithm, and a backward and forward search method. Moreover, the DDIACS framework is compliant with the emerging software defined network (SDN) because in this framework, a control plane and data plane are used to monitor and manage the network topology. The proposed framework demonstrates SDN advantages such as enabling networks to exhibit flexibility, fast convergence, and robustness in overcoming complicated multi-attacker problems. In addition, this study investigated the time and space complexity of the DDIACS framework and compared this framework with the swarm optimization algorithm and probabilistic packet marking. This study designed the network topology by using the data set from the DARPA and KDD repository. The simulation results show that the proposed framework resolves the problems in using other algorithms and that the DDIACS framework demonstrates better performance than existing methods; furthermore, the adaptive metaheuristic algorithm outperforms other methods in thwarting an LDDoS attack. The detection rate is about 89% and the accuracy is greater than 83%.en_US
dc.language.isoen_USen_US
dc.subjectdistributed denial of service (DDoS)en_US
dc.subjectlow-rate distributed denial of service (LDDoS)en_US
dc.subjectant colony systemen_US
dc.subjectant colony optimization (ACO)en_US
dc.subjectmetaheuristic techniqueen_US
dc.subjectsoftware defined network (SDN)en_US
dc.subjectswarm optimization algorithmen_US
dc.subjectprobabilistic packet marking (PPM)en_US
dc.titleLDDoS Attack Detection by Using Ant Colony Optimization Algorithmsen_US
dc.identifier.journalJOURNAL OF INFORMATION SCIENCE AND ENGINEERINGen_US
dc.citation.volume32en_US
dc.citation.issue4en_US
dc.citation.spage995en_US
dc.citation.epage1020en_US
dc.contributor.department資訊工程學系zh_TW
dc.contributor.department資訊技術服務中心zh_TW
dc.contributor.departmentDepartment of Computer Scienceen_US
dc.contributor.departmentInformation Technology Services Centeren_US
dc.identifier.wosnumberWOS:000378461400010en_US
顯示於類別:期刊論文