標題: | DDoS detection and traceback with decision tree and grey relational analysis |
作者: | Wu, Yi-Chi Tseng, Huei-Ru Yang, Wuu Jan, Rong-Hong 資訊工程學系 Department of Computer Science |
關鍵字: | DDoS detection;attacker traceback;decision tree;grey relational analysis |
公開日期: | 2011 |
摘要: | In Distributed Denial-of-Service (DDoS) Attack, an attacker breaks into many innocent computers (called zombies). Then, the attacker sends a large number of packets from zombies to a server, to prevent the server from conducting normal business operations. We design a DDoS-detection system based on a decision-tree technique and, after detecting an attack, to trace back to the attacker's locations with a traffic-flow pattern-matching technique. Our system could detect DDoS attacks with the false positive ratio about 1.2-2.4%, false negative ratio about 2-10%, and find the attack paths in traceback with the false negative rate 8-12% and false positive rate 12-14%. |
URI: | http://hdl.handle.net/11536/26033 http://dx.doi.org/10.1504/IJAHUC.2011.038998 |
ISSN: | 1743-8225 |
DOI: | 10.1504/IJAHUC.2011.038998 |
期刊: | INTERNATIONAL JOURNAL OF AD HOC AND UBIQUITOUS COMPUTING |
Volume: | 7 |
Issue: | 2 |
起始頁: | 121 |
結束頁: | 136 |
顯示於類別: | 期刊論文 |