Syn Flood Attack Detection and Type Distinguishing Mechanism Based on Counting Bloom Filter

Abstract : Presented work focuses onto proposal, implementation and evaluation of the new method for detection and type identification of SYN flood (DoS) attacks. The method allows distinguishing type of detected SYN flood attacks – random, subnet or fixed. Based on Counting Bloom filter, the attack detection and identification algorithm is proposed, implemented and evaluated in KaTaLyzer network traffic monitoring tool. Proof of correctness of the approach for TCP SYN flood attack detection and type identification is provided – both in practical and theoretical manners. In practice, new module for KaTaLyzer is implemented and TCP attacks are detected, identified and network administrator is notified about them in real-time.
Type de document :
Communication dans un congrès
Ismail Khalil; Erich Neuhold; A Min Tjoa; Li Da Xu; Ilsun You. 3rd International Conference on Information and Communication Technology-EurAsia (ICT-EURASIA) and 9th International Conference on Research and Practical Issues of Enterprise Information Systems (CONFENIS), Oct 2015, Daejon, South Korea. Springer, Lecture Notes in Computer Science, LNCS-9357, pp.30-39, 2015, Information and Communication Technology. 〈10.1007/978-3-319-24315-3_4〉
Liste complète des métadonnées

Littérature citée [14 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01466237
Contributeur : Hal Ifip <>
Soumis le : lundi 13 février 2017 - 14:31:51
Dernière modification le : mardi 14 février 2017 - 01:07:56
Document(s) archivé(s) le : dimanche 14 mai 2017 - 14:02:01

Fichier

978-3-319-24315-3_4_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Tomáš Halagan, Tomáš Kováčik, Peter Trúchly, Andrej Binder. Syn Flood Attack Detection and Type Distinguishing Mechanism Based on Counting Bloom Filter. Ismail Khalil; Erich Neuhold; A Min Tjoa; Li Da Xu; Ilsun You. 3rd International Conference on Information and Communication Technology-EurAsia (ICT-EURASIA) and 9th International Conference on Research and Practical Issues of Enterprise Information Systems (CONFENIS), Oct 2015, Daejon, South Korea. Springer, Lecture Notes in Computer Science, LNCS-9357, pp.30-39, 2015, Information and Communication Technology. 〈10.1007/978-3-319-24315-3_4〉. 〈hal-01466237〉

Partager

Métriques

Consultations de la notice

251

Téléchargements de fichiers

14