An Approach of Detecting&nbsp; Distributed LowRate DoS Attack Based on the Congestion Participation Rate

ZHANG Changwang1,YIN Jianping1,CAI Zhiping1,ZHU En1,CHENG Jieren1,2

doi:10.3969/j.issn.1007130X.2010.

Computer Engineering & Science >

2010 , Vol. 32 >Issue 7: 49 - 52

DOI: https://doi.org/10.3969/j.issn.1007130X.2010.

论文

An Approach of Detecting Distributed LowRate DoS Attack Based on the Congestion Participation Rate

Expand

(1.School of Computer Science,National University of Defense Technology,Changsha 410073;
2.Department of Mathematics,Xiangnan University,Chenzhou 423000,China)

Received date: 2009-04-13

Revised date: 2009-07-10

Online published: 2010-06-22

Fold

Abstract

Distributed Lowrate DenialofService attacks (DLDoS) exploit the vulnerability of the adaptive behaviours exhibited by network protocols and network services. Its attack efficiency and ability of concealment are far higher than the traditional floodingbased DDoS attacks, thus it is harder to detect and defense. In this paper, we first model and formalize the DLDoS attacks, and then propose an approach of detecting DLDoS based on the congestion participation rate (CPR). Experiments and analysis demonstrate that the approach can detect the DLDoS attacks accurately and reduce the false alarm rate drastically.

Key words： DLDoS attack;congestion participation rate;modeling and formalization;attack detection

Cite this article

ZHANG Changwang1,YIN Jianping1,CAI Zhiping1,ZHU En1,CHENG Jieren1,2 . An Approach of Detecting Distributed LowRate DoS Attack Based on the Congestion Participation Rate[J]. Computer Engineering & Science, 2010 , 32(7) : 49 -52 . DOI: 10.3969/j.issn.1007130X.2010.

Options

Outlines

模态框（Modal）标题

Abstract

Cite this article