Detecting pulsing denial-of-service attacks based on the bandwidth usage condition

Hiroshi Tsunoda, Kenjirou Arai, Yuji Waizumi, Nirwan Ansari, Yoshiaki Nemoto

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

Pulsing Denial-of-Service (PDoS) attacks seriously degrade the throughput of TCP flows and consequently pose a grave detrimental effect on network performance. The fact that they generate less traffic than traditional flood-based attacks makes PDoS detection more difficult. Most of the conventional PDoS detection shemes focus on the periodical pattern of the pulse trains. Therefore, attackers can easily escape the detection system by merely controlling the timing of pulse transmission. In this paper, we propose a novel and robust PDoS detection method which capitalizes on the bandwidth usage condition of network traffic in distinguishing the congestion due to normal traffic from that due to PDoS attacks. Simulation experiments have demonstrated the effectiveness of the proposed scheme in detecting PDoS attacks.

Original languageEnglish
Title of host publicationICC 2008 - IEEE International Conference on Communications, Proceedings
Pages1670-1674
Number of pages5
DOIs
Publication statusPublished - 2008 Sep 12
EventIEEE International Conference on Communications, ICC 2008 - Beijing, China
Duration: 2008 May 192008 May 23

Publication series

NameIEEE International Conference on Communications
ISSN (Print)0536-1486

Other

OtherIEEE International Conference on Communications, ICC 2008
CountryChina
CityBeijing
Period08/5/1908/5/23

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Electrical and Electronic Engineering

Fingerprint Dive into the research topics of 'Detecting pulsing denial-of-service attacks based on the bandwidth usage condition'. Together they form a unique fingerprint.

Cite this