一种低速率DDoS攻击的检测系统
首发时间:2008-10-08
摘要:近年来出现的分布式拒绝服务攻击(DDoS)对网络安全和信息的可用性造成了巨大的威胁。随着DDoS攻击的发展,出现了一种新型攻击方式:低速率攻击。由于之前用于检测DDoS的入侵检测系统(IDS)多是建立在对入侵者的高速数据流统计检测的基础上,导致低速率攻击可以逃过这种高速率IDS。本文将提出一种针对低速率DDoS攻击的入侵检测系统。该系统可设定识别概率、漏报概率,根据用户要求对攻击进行有效检测并具有多种报警方式。
关键词: 分布式拒绝服务 低速率攻击 入侵检测 网络安全 TCP
For information in English, please click here
A Kind of IDS Against Low-rate DDoS Attack
Abstract:In recent years, Distributed Denial of Service (DDoS) causes huge threaten to the Network Security and information. With the development of DDoS, a new type of attack is emerged: low-rate attack. Because of the usual DDoS Identify Detection System (IDS) is based on the statistical detection of high traffic rates coming from the intruder or intruders, low-rate attack can avoid the detection. This paper proposes a new kind of IDS. This system can set the identification probability and false alarm probability and detect effectively according to users requirements and warn in many ways.
Keywords: DDoS Low-rate attack IDS Network security TCP
论文图表:
引用
No.2464033177912234****
同行评议
共计0人参与
勘误表
一种低速率DDoS攻击的检测系统
评论
全部评论0/1000