Home // ICSNC 2012, The Seventh International Conference on Systems and Networks Communications // View article

Methodologies for detecting DoS/DDoS attacks against network servers

Authors:
Mohammed Alenezi
Martin Reed

Keywords: DoS; DDoS; detection; network security

Abstract:
As denial of service (DoS) attacks are becoming more common in the Internet, there is greater need for solutions to overcome these attacks. Defending against DoS/ DDoS attacks can generally be divided into 3 phases: prevention, detection and response. Detection is one of the key steps in defending against DoS/ DDoS attacks. However, with the high variation in the DoS/DDoS attack types, the detection of such attacks becomes problematic. A good detection technique should have short detection time and low false positive rate. This paper presents an introduction to intrusion detection systems (IDS) and survey of different DoS/DDoS detection techniques. The key observation of this survey paper is that a CUSUM-based detection technique has many advantages over other statistical instruments in that it is non-parametric; consequently, it does not require training and is more robust to variations in the attack profile.

Pages: 92 to 98

Copyright: Copyright (c) IARIA, 2012

Publication date: November 18, 2012

Published in: conference

ISSN: 2163-9027

ISBN: 978-1-61208-231-8

Location: Lisbon, Portugal

Dates: from November 18, 2012 to November 23, 2012