An Experimental Detection of Distributed Denial of Service Attack in CDX 3 Platform Based on Snort-Reference-Cited by-同舟云学术

An Experimental Detection of Distributed Denial of Service Attack in CDX 3 Platform Based on Snort

Published:2023-07-04 Issue:13 Volume:23 Page:6139
ISSN:1424-8220
Container-title:Sensors
language:en
Short-container-title:Sensors

Author:

Chen Chin-Ling¹,Lai Jian Lin¹

Affiliation:

1. Department of Information Management, National Pingtung University, Pingtung 900, Taiwan

Abstract

Distributed Denial of Service (DDoS) attacks pose a significant threat to internet and cloud security. Our study utilizes a Poisson distribution model to efficiently detect DDoS attacks with a computational complexity of O(n). Unlike Machine Learning (ML)-based algorithms, our method only needs to set up one or more Poisson models for legitimate traffic based on the granularity of the time periods during preprocessing, thus eliminating the need for training time. We validate this approach with four virtual machines on the CDX 3.0 platform, each simulating different aspects of DDoS attacks for offensive, monitoring, and defense evaluation purposes. The study further analyzes seven diverse DDoS attack methods. When compared with existing methods, our approach demonstrates superior performance, highlighting its potential effectiveness in real-world DDoS attack detection.

Publisher

MDPI AG

Subject

Electrical and Electronic Engineering,Biochemistry,Instrumentation,Atomic and Molecular Physics, and Optics,Analytical Chemistry

Link

https://www.mdpi.com/1424-8220/23/13/6139/pdf

Reference21 articles.

1. Cimpanu, C. (2023, April 30). Google Says It Mitigated a 2.54 Tbps DDoS Attack in 2017, Largest Known to Date. ZDNet. Available online: https://www.zdnet.com/article/google-says-it-mitigated-a-2-54-tbps-ddos-attack-in-2017-largest-known-to-date/.

2. Kottler, S. (2023, April 30). February 28th DDoS Incident Report. The GitHub Blog. Available online: https://github.blog/2018-03-01-ddos-incident-report/.

3. Cimpanu, C. (2023, April 30). AWS Said It Mitigated a 2.3 Tbps DDoS Attack, the Largest Ever. ZDNet. Available online: https://www.zdnet.com/article/aws-said-it-mitigated-a-2-3-tbps-ddos-attack-the-largest-ever/.

4. Nenova, M., Atanasov, D., Kassev, K., and Nenov, A. (2019, January 4–6). Intrusion Detection System Model Implementation against DDOS attacks. Proceedings of the 2019 IEEE International Conference on Microwaves, Antennas, Communications and Electronic Systems (COMCAS), Tel-Aviv, Israel.

5. Habib, B., Khurshid, F., Dar, A.H., and Shah, Z. (2019, January 21–22). DDoS Mitigation in Eucalyptus Cloud Platform Using Snort and Packet Filtering—IP-Tables. Proceedings of the 2019 4th International Conference on Information Systems and Computer Networks (ISCON), Mathura, India.

Cited by 5 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Game Theory for 5G Cloud- Edge-Terminal Distributed Networks under DoS Attacks;2024 IEEE Wireless Communications and Networking Conference (WCNC);2024-04-21

2. Multi-Pattern GPU Accelerated Collision-Less Rabin-Karp for NIDS;International Journal of Distributed Systems and Technologies;2024-03-27

3. A Multi-class Classification for Detection of IoT Network Attacks Using Machine Learning Models;Lecture Notes in Computer Science;2024

4. Enhancing Network Security Against DDoS Attacks: An Analysis of OPNET Modelers;2023 12th International Conference on System Modeling & Advancement in Research Trends (SMART);2023-12-22

5. OPNET Insights: Unpacking DDoS Effects on Network Performance;2023 5th International Conference on Advances in Computing, Communication Control and Networking (ICAC3N);2023-12-15