Entity entity -based parameterization for distinguishing distributed denial of service from flash events

M. A. Mohamed, N. Jamil, A. F. Abidin, M. M. Din, W. N.S.W. Nik, A. R. Mamat

Research output: Contribution to journalArticle

1 Citation (Scopus)

Abstract

In a perfect condition, there are only normal network traffic and sometimes flash event traffics due to some eyecatching or heartbreaking events. Nevertheless, both events carry legitimate requests and contents to the server. Flash event traffic can be massive and damaging to the availability of the server. However, it can easily be remedied by hardware solutions such as adding extra processing power and memory devices and software solution such as load balancing. In contrast, a collection of illegal traffic requests produced during distributed denial of service (DDoS) attack tries to cause damage to the server and thus is considered as dangerous where prevention, detection and reaction are imminent in case of occurrence. In this paper, the detection of attacks by distinguishing it from legal traffic is of our main concern. Initially, we categorize the parameters involved in the attacks in relation to their entities. Further, we examine different concepts and techniques from information theory and image processing domain that takes the aforementioned parameters as input and in turn decides whether an attack has occurred. In addition to that, we also pointed out the advantages for each technique, as well as any possible weakness for possible future works.

Original languageEnglish
Pages (from-to)5-8
Number of pages4
JournalInternational Journal of Engineering and Technology(UAE)
Volume7
Issue number2
DOIs
Publication statusPublished - 01 Jan 2018

    Fingerprint

All Science Journal Classification (ASJC) codes

  • Biotechnology
  • Computer Science (miscellaneous)
  • Environmental Engineering
  • Chemical Engineering(all)
  • Engineering(all)
  • Hardware and Architecture

Cite this