Abstract

We investigate statistical anomaly detection algorithms for detecting SYN flooding, which is the most common type of Denial of Service (DoS) attack. The two algorithms considered are an adaptive threshold algorithm and a particular application of the cumulative sum (CUSUM) algorithm for change point detection. The performance is investigated in terms of the detection probability, the false alarm ratio, and the detection delay, using workloads of real traffic traces. Particular emphasis is on investigating the tradeoffs among these metrics and how they are affected by the parameters of the algorithm and the characteristics of the attacks. Such an investigation can provide guidelines to effectively tune the parameters of the detection algorithm to achieve specific performance requirements in terms of the above metrics.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Application of anomaly detection algorithms for detecting SYN flooding attacks
V.A Siris ... F Papagalou
-
V.A Siris, et. al.V.A Siris ... F Papagalou
29 Nov 2004
Anomaly Detection Approach based on Function Code Traffic by Using CUSUM Algorithm
Ming Wan ... Wenli Shang
-
Ming Wan, et. al.Ming Wan ... Wenli Shang
01 Jan 2015
Review Over Anomaly Detection Algorithms for Detecting SYN Flooding Attacks
Riaz A Shaikh ... Kashan Samad
-
Riaz A Shaikh, et. al.Riaz A Shaikh ... Kashan Samad
01 Aug 2005
Detection of selfish behavior in wireless ad hoc networks based on CUSUM algorithm
Chunfeng Liu ... Mingyuan Li
Transactions of Tianjin University | VOL. 16
Chunfeng Liu, et. al.Chunfeng Liu ... Mingyuan Li
11 Mar 2010
View more papers

More From: Computer Communications

Paper Title
Journal
Date
Author
DAR-DRL: A dynamic adaptive routing method based on deep reinforcement learning
Zheheng Rao ... Weizhi Meng
Computer Communications | VOL. 228
Zheheng Rao, et. al.Zheheng Rao ... Weizhi Meng
22 Oct 2024
An efficient Proof-of-Authority consensus scheme against cloning attacks
Shu-Ping Lu ... Meng-Han Tsai
Computer Communications | VOL. 228
Shu-Ping Lu, et. al.Shu-Ping Lu ... Meng-Han Tsai
18 Oct 2024
Optimizing point-of-sale services in MEC enabled near field wireless communications using multi-agent reinforcement learning
Ateeq Ur Rehman ... Ali Nauman
Computer Communications | VOL. 228
Ateeq Ur Rehman, et. al.Ateeq Ur Rehman ... Ali Nauman
10 Oct 2024
Design of Provably Secure and Lightweight Authentication Protocol for Unmanned Aerial Vehicle systems
Mohd Shariq ... Mehedi Masud
Computer Communications | VOL. 228
Mohd Shariq, et. al.Mohd Shariq ... Mehedi Masud
10 Oct 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.