Author:
Wang Fei,Li Zhenxing,Wang Xiaofeng
Abstract
Distributed Denial of Service (DDoS) is Achilles' heel of cloud security. This paper thus focuses on detection of such attack, and more importantly, victim identification to promote attack reaction. We present a collaborative system, called F-LOW. Profiting from bitwise-based hash function, split sketch, and lightweight IP reconstruction, F-LOW can defeat shortcomings of principle component analysis (PCA) and regular sketch. Outperforming previous work, our system fits all Four-LOW properties, low profile, low dimensional, low overhead and low transmission, of a promising DDoS countermeasure. Through simulation and theoretical analysis, we demonstrate such properties and remarkable efficacy of our approach in DDoS mitigation.
Publisher
Academy and Industry Research Collaboration Center (AIRCC)
Reference16 articles.
1. Sampling rate distribution for flow monitoring and DDoS detection in datacenter;Biswas;IEEE Transactions on Information Forensics and Security,2021
2. [2] Toh, A., (2022) "Azure DDoS Protection-2021 Q3 and Q4 DDoS attack trends".
3. [3] Wang, F., Wang, H., Wang, X., & Su, J., (2012) "A new multistage approach to detect subtle DDoS attacks", Mathematical and Computer Modelling, Vol. 55, No. 1-2, pp198-213.
4. [4] Wang, H., Zhang, D., & Shin, K. G, (2002, June) "Detecting SYN flooding attacks" Proceedings, Twenty-first annual joint conference of the IEEE computer and communications societies, Vol. 3, pp1530-1539.
5. Collaborative detection of DDoS attacks over multiple network domains;Chen;IEEE Transactions on Parallel and Distributed Systems,2007