Abstract
To defend DoS (Denial of Service) Attacks, an access filtering mechanism is adopted in the end servers or the IDS (Intrusion Detection System). The difficulty to define the filtering rules lies where normal and anomaly packets have to be distinguished in incoming packets. The purpose of our research is to explore the early detective method for anomaly accesses based on statistic analysis. In this paper, we defined the chi-square method, and then analyze the all amount of incoming packets to our College focusing on the source IP address using chi-square method. As the results, we were able to extract the following features. Firstly, the number of packets was the more suitable scale of the window in the chi-square method than the time scale. Secondly, the setting of the window size with 500 packets and 2 bins made the detection of the DoS attacks within 10 minutes for DNS packets possible. Finally, we verified that the DoS attacks from the same source IP address was detected using the chi-square method.
Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
