4.5 Article

An empirical evaluation of information metrics for low-rate and high-rate DDoS attack detection

PATTERN RECOGNITION LETTERS (2015)

Get Full Text
Add to Collection

Journal

PATTERN RECOGNITION LETTERS
Volume 51, Issue -, Pages 1-7

Publisher

ELSEVIER
DOI: 10.1016/j.patrec.2014.07.019

Keywords

DDoS attack; Information metric; Threat; Network traffic; Entropy

Categories

Computer Science, Artificial Intelligence

Funding

  1. Department of Information Technology and Council of Scientific & Industrial Research (CSIR), Government of India

Ask authors/readers for more resources

Protocol

Community support

Reagent

Community support

Distributed Denial of Service (DDoS) attacks represent a major threat to uninterrupted and efficient Internet service. In this paper, we empirically evaluate several major information metrics, namely, Hartley entropy, Shannon entropy, Renyi's entropy, generalized entropy, Kullback-Leibler divergence and generalized information distance measure in their ability to detect both low-rate and high-rate DDoS attacks. These metrics can be used to describe characteristics of network traffic data and an appropriate metric facilitates building an effective model to detect both low-rate and high-rate DDoS attacks. We use MIT Lincoln Laboratory, CAIDA and TUIDS DDoS datasets to illustrate the efficiency and effectiveness of each metric for DDoS detection. (C) 2014 Elsevier B.V. All rights reserved.

Authors

I am an author on this paper
Click your name to claim this paper and add it to your profile.

Reviews

Primary Rating

4.5
Not enough ratings

Secondary Ratings

Novelty
-
Significance
-
Scientific rigor
-
Rate this paper

Recommended

No Data Available
No Data Available
Webinars Posters Questions Hubs Funding Journals Papers Connect Collections Reviewers About Us FAQs Mobile App Privacy Policy Terms of Use
© Peeref 2019-2024. All rights reserved.