A New Multivariate Correlation Study for Detection of Denial-of-Service Attack

Amjuri Lakshmi Prasad, V S Naidu, G Tatayyanaidu

Abstract


We present a attack detection system that utilizes Multivariate Correlation Analysis (MCA) for precise system traffic portrayal by removing the geometrical relationships between's system traffic highlights. Our MCA-based DoSattack identification framework utilizes the rule of abnormality based detection in attack acknowledgment. This makes our answer equipped for distinguishing known and obscure DoSattacks adequately by learning the examples of real system traffic as it were. Besides, a triangle-zone based system is proposed to upgrade and to accelerate the procedure of MCA. The adequacy of our proposed location framework is assessed utilizing KDD Cup 99 dataset, and the impacts of both non-standardized information and standardized information on the execution of the proposed identification framework are analyzed.


References


V. Paxson, “Bro: A System for Detecting Network Intruders in Realtime,†Computer Networks, vol. 31, pp. 2435-2463, 1999

P. Garca-Teodoro, J. Daz-Verdejo, G. Maci-Fernndez, and E. Vzquez, “Anomaly-based Network Intrusion Detection: Techniques, Systems and Challenges,†Computers & Security, vol. 28, pp. 18-28, 2009.

D. E. Denning, “An Intrusion-detection Model,†IEEE Transactions on Software Engineering, pp. 222-232, 1987.

K. Lee, J. Kim, K. H. Kwon, Y. Han, and S. Kim, “DDoS attack detection method using cluster analysis,†Expert Systems with Applications, vol. 34, no. 3, pp. 1659-1665, 2008.

A. Tajbakhsh, M. Rahmati, and A. Mirzaei, “Intrusion detection using fuzzy association rules,†Applied Soft Computing, vol. 9, no. 2, pp. 462-469, 2009.

J. Yu, H. Lee, M.-S.Kim, and D. Park, “Traffic flooding attack detection with SNMP MIB using SVM,†Computer Communications, vol. 31, no. 17, pp. 4212-4219, 2008.

W. Hu, W. Hu, and S. Maybank, “AdaBoost-Based Algorithm for Network Intrusion Detection,†Trans. Sys. Man Cyber. Part B, vol. 38, no. 2, pp. 577-583, 2008.

C. Yu, H. Kai, and K. Wei-Shinn, “Collaborative Detection of DDoS Attacks over Multiple Network Domains,†Parallel and Distributed Systems, IEEE Transactions on, vol. 18, pp. 1649-1662, 2007.

G. Thatte, U. Mitra, and J. Heidemann, “Parametric Methods for Anomaly Detection in Aggregate Traffic,†Networking, IEEE/ACM Transactions on, vol. 19, no. 2, pp. 512-525, 2011.

S. T. Sarasamma, Q. A. Zhu, and J. Huff, “Hierarchical Kohonenen Net for Anomaly Detection in Network Security,†Systems, Man, and Cybernetics, Part B: Cybernetics, IEEE Transactions on, vol. 35, pp. 302-312, 2005.

S. Yu, W. Zhou, W. Jia, S. Guo, Y. Xiang, and F. Tang, “Discriminating DDoS Attacks from Flash Crowds Using Flow Correlation Coefficient,†Parallel and Distributed Systems, IEEE Transactions on, vol. 23, pp. 1073-1080, 2012.

S. Jin, D. S. Yeung, and X. Wang, “Network Intrusion Detection in Covariance Feature Space,†Pattern Detection, vol. 40, pp. 2185- 2197, 2007.

C. F. Tsai and C. Y. Lin, “A Triangle Area Based Nearest Neighbors Approach to Intrusion Detection,†Pattern Detection, vol. 43, pp. 222-229, 2010.

A. Jamdagni, Z. Tan, X. He, P. Nanda, and R. P. Liu, “RePIDS: A multi tier Real-time Payload-based Intrusion Detection System,†Computer Networks, vol. 57, pp. 811-824, 2013.

Z. Tan, A. Jamdagni, X. He, P. Nanda, and R. P. Liu, “Denialof- Service Attack Detection


Full Text: PDF [Full Text]

Refbacks

  • There are currently no refbacks.


Copyright © 2013, All rights reserved.| ijseat.com

Creative Commons License
International Journal of Science Engineering and Advance Technology is licensed under a Creative Commons Attribution 3.0 Unported License.Based on a work at IJSEat , Permissions beyond the scope of this license may be available at http://creativecommons.org/licenses/by/3.0/deed.en_GB.

Â