Detecting and tracing illegal access by using traffic pattern matching technique

Yohsuke Takei, Kohei Ohta, Nei Kato, Yoshiaki Nemoto

Research output: Contribution to journalArticlepeer-review

Abstract

Illegal access on the Internet has become a problem in recent years. Since illegal access aimed at the network significantly affects the entire network, there has been an urgent need to establish countermeasures. Observing network traffic is considered an effective means for detecting this type of illegal access. However, problems presented by the kinds of illegal access represented by a DoS (Denial of Service) attack are that the attacker can alter the packet source address. Acquiring and analyzing packet information is also difficult due to the increased network speed. Therefore, there is an urgent need to establish a reliable and low-impact observation technique and a technique that enables attackers to be traced in future high-speed network environments. In this paper, the authors propose an algorithm for detecting illegal access by extracting and comparing changes in traffic patterns and show that illegal access can be detected and traced by applying this algorithm.

Original languageEnglish
Pages (from-to)61-71
Number of pages11
JournalElectronics and Communications in Japan, Part I: Communications (English translation of Denshi Tsushin Gakkai Ronbunshi)
Volume87
Issue number1
DOIs
Publication statusPublished - 2004 Jan 1

Keywords

  • DoS attack
  • High-speed network
  • IP spoofing
  • Illegal access detection
  • Traffic pattern

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Electrical and Electronic Engineering

Fingerprint

Dive into the research topics of 'Detecting and tracing illegal access by using traffic pattern matching technique'. Together they form a unique fingerprint.

Cite this