Detection method of LDoS attack based on ACK serial number step-length
Low-rate denial of service (LDoS) attack is a potential security threat to big data centers and cloud computing platforms because of its strong concealment.Based on the analysis of network traffic during the LDoS attack,statistical analysis was given of ACK packets returned by the data receiver to t...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Editorial Department of Journal on Communications
2018-07-01
|
| Series: | Tongxin xuebao |
| Subjects: | |
| Online Access: | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2018126/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1850122374671761408 |
|---|---|
| author | Zhijun WU Qingbo PAN Meng YUE |
| author_facet | Zhijun WU Qingbo PAN Meng YUE |
| author_sort | Zhijun WU |
| collection | DOAJ |
| description | Low-rate denial of service (LDoS) attack is a potential security threat to big data centers and cloud computing platforms because of its strong concealment.Based on the analysis of network traffic during the LDoS attack,statistical analysis was given of ACK packets returned by the data receiver to the sender,and result reveals the sequence number step had the characteristics of volatility during the LDoS attack.The permutation entropy method was adopted to extract the characteristics of volatility.Hence,an LDoS attack detection method based on ACK serial number step permutation entropy was proposed.The serial number was sampled and the step length was calculated through collecting the ACK packets that received at the end of sender.Then,the permutation entropy algorithm with strong time-sensitive was used to detect the mutation step time,and achieve the goal of detecting LDoS attack.A test-bed was designed and built in the actual network environment for the purpose of verifying the proposed approach performance.Experimental results show that the proposed approach has better detection performance and has achieved better detection effect. |
| format | Article |
| id | doaj-art-6a14c1c418954e6a870e7507e38e7dcd |
| institution | OA Journals |
| issn | 1000-436X |
| language | zho |
| publishDate | 2018-07-01 |
| publisher | Editorial Department of Journal on Communications |
| record_format | Article |
| series | Tongxin xuebao |
| spelling | doaj-art-6a14c1c418954e6a870e7507e38e7dcd2025-08-20T02:34:50ZzhoEditorial Department of Journal on CommunicationsTongxin xuebao1000-436X2018-07-013913914759719550Detection method of LDoS attack based on ACK serial number step-lengthZhijun WUQingbo PANMeng YUELow-rate denial of service (LDoS) attack is a potential security threat to big data centers and cloud computing platforms because of its strong concealment.Based on the analysis of network traffic during the LDoS attack,statistical analysis was given of ACK packets returned by the data receiver to the sender,and result reveals the sequence number step had the characteristics of volatility during the LDoS attack.The permutation entropy method was adopted to extract the characteristics of volatility.Hence,an LDoS attack detection method based on ACK serial number step permutation entropy was proposed.The serial number was sampled and the step length was calculated through collecting the ACK packets that received at the end of sender.Then,the permutation entropy algorithm with strong time-sensitive was used to detect the mutation step time,and achieve the goal of detecting LDoS attack.A test-bed was designed and built in the actual network environment for the purpose of verifying the proposed approach performance.Experimental results show that the proposed approach has better detection performance and has achieved better detection effect.http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2018126/low-rate denial of serviceACK serial number step-lengthpermutation entropydetection |
| spellingShingle | Zhijun WU Qingbo PAN Meng YUE Detection method of LDoS attack based on ACK serial number step-length Tongxin xuebao low-rate denial of service ACK serial number step-length permutation entropy detection |
| title | Detection method of LDoS attack based on ACK serial number step-length |
| title_full | Detection method of LDoS attack based on ACK serial number step-length |
| title_fullStr | Detection method of LDoS attack based on ACK serial number step-length |
| title_full_unstemmed | Detection method of LDoS attack based on ACK serial number step-length |
| title_short | Detection method of LDoS attack based on ACK serial number step-length |
| title_sort | detection method of ldos attack based on ack serial number step length |
| topic | low-rate denial of service ACK serial number step-length permutation entropy detection |
| url | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2018126/ |
| work_keys_str_mv | AT zhijunwu detectionmethodofldosattackbasedonackserialnumbersteplength AT qingbopan detectionmethodofldosattackbasedonackserialnumbersteplength AT mengyue detectionmethodofldosattackbasedonackserialnumbersteplength |