Construction of DDoS attacks malicious behavior knowledge base construction
Aiming at the problem of insufficient research on the knowledge base of distributed denial of service (DDoS) network attacks, a method for constructing a knowledge base of DDoS attacks malicious behavior was proposed.The knowledge base was constructed based on the knowledge graph, and contains two p...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Beijing Xintong Media Co., Ltd
2021-11-01
|
| Series: | Dianxin kexue |
| Subjects: | |
| Online Access: | http://www.telecomsci.com/zh/article/doi/10.11959/j.issn.1000-0801.2021257/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841528834262827008 |
|---|---|
| author | Feiyang LIU Kun LI Fei SONG Huachun ZHOU |
| author_facet | Feiyang LIU Kun LI Fei SONG Huachun ZHOU |
| author_sort | Feiyang LIU |
| collection | DOAJ |
| description | Aiming at the problem of insufficient research on the knowledge base of distributed denial of service (DDoS) network attacks, a method for constructing a knowledge base of DDoS attacks malicious behavior was proposed.The knowledge base was constructed based on the knowledge graph, and contains two parts: a malicious traffic detection database and a network security knowledge base.The malicious traffic detection database detects and classifies malicious traffic caused by DDoS attacks, the network security knowledge base detects DDoS attacks from traffic characteristics and attack frameworks model malicious behaviors, and perform inference, tracing and feedback on malicious behaviors.On this basis, a distributed knowledge base was built based on the DDoS open threat signaling (DOTS) protocol to realize the functions of data transmission between distributed nodes, DDoS attack defense, and malicious traffic mitigation.The experimental results show that the DDoS attack malicious behavior knowledge base can effectively detect and mitigate the malicious traffic caused by DDoS attacks at multiple gateways, and has the knowledge update and reasoning function between the distributed knowledge bases, showing good scalability. |
| format | Article |
| id | doaj-art-2fd3787ea000458b849438a664ab8ecc |
| institution | Kabale University |
| issn | 1000-0801 |
| language | zho |
| publishDate | 2021-11-01 |
| publisher | Beijing Xintong Media Co., Ltd |
| record_format | Article |
| series | Dianxin kexue |
| spelling | doaj-art-2fd3787ea000458b849438a664ab8ecc2025-01-15T03:32:59ZzhoBeijing Xintong Media Co., LtdDianxin kexue1000-08012021-11-0137173259815768Construction of DDoS attacks malicious behavior knowledge base constructionFeiyang LIUKun LIFei SONGHuachun ZHOUAiming at the problem of insufficient research on the knowledge base of distributed denial of service (DDoS) network attacks, a method for constructing a knowledge base of DDoS attacks malicious behavior was proposed.The knowledge base was constructed based on the knowledge graph, and contains two parts: a malicious traffic detection database and a network security knowledge base.The malicious traffic detection database detects and classifies malicious traffic caused by DDoS attacks, the network security knowledge base detects DDoS attacks from traffic characteristics and attack frameworks model malicious behaviors, and perform inference, tracing and feedback on malicious behaviors.On this basis, a distributed knowledge base was built based on the DDoS open threat signaling (DOTS) protocol to realize the functions of data transmission between distributed nodes, DDoS attack defense, and malicious traffic mitigation.The experimental results show that the DDoS attack malicious behavior knowledge base can effectively detect and mitigate the malicious traffic caused by DDoS attacks at multiple gateways, and has the knowledge update and reasoning function between the distributed knowledge bases, showing good scalability.http://www.telecomsci.com/zh/article/doi/10.11959/j.issn.1000-0801.2021257/DDoSdistributedknowledge graphmalicious behavior knowledge base |
| spellingShingle | Feiyang LIU Kun LI Fei SONG Huachun ZHOU Construction of DDoS attacks malicious behavior knowledge base construction Dianxin kexue DDoS distributed knowledge graph malicious behavior knowledge base |
| title | Construction of DDoS attacks malicious behavior knowledge base construction |
| title_full | Construction of DDoS attacks malicious behavior knowledge base construction |
| title_fullStr | Construction of DDoS attacks malicious behavior knowledge base construction |
| title_full_unstemmed | Construction of DDoS attacks malicious behavior knowledge base construction |
| title_short | Construction of DDoS attacks malicious behavior knowledge base construction |
| title_sort | construction of ddos attacks malicious behavior knowledge base construction |
| topic | DDoS distributed knowledge graph malicious behavior knowledge base |
| url | http://www.telecomsci.com/zh/article/doi/10.11959/j.issn.1000-0801.2021257/ |
| work_keys_str_mv | AT feiyangliu constructionofddosattacksmaliciousbehaviorknowledgebaseconstruction AT kunli constructionofddosattacksmaliciousbehaviorknowledgebaseconstruction AT feisong constructionofddosattacksmaliciousbehaviorknowledgebaseconstruction AT huachunzhou constructionofddosattacksmaliciousbehaviorknowledgebaseconstruction |