Abstract
The challenges from Distributed Denial-of-Service (DDoS) attacks are severe and still increasing significantly. We observe that the existing entropy-based methods only consider the probability distribution of traffic flows that have high false negative rates. On the other hand, sophisticated attack strategies, increasing attack strength and dynamic nature of network traffic patterns make it more difficult to detect the DDoS attacks with high accuracy. In this letter, we present an accurate approach, entropy rate measurement (ERM), to detect DDoS attacks. The proposed approach is based on the differences between the probability distributions and the number of flows. Both theoretical proofs and the results of experiments using real datasets demonstrate that our method has high detection accuracy rate compared to the existing measurements.
Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
