An aggregative approach for scalable detection of DoS attacks

Files

An aggregative approach for scalable detection of DoS attacks.pdf (227.58 KB)

Date

2008-12

Authors

Hamidi, Alireza
Ganti, Sudhakar
Wu, Kui

Journal Title

Journal ISSN

Volume Title

Publisher

IEEE

Abstract

In Voice Over IP (VoIP) systems, intruders can launch DoS attacks by establishing a large number of open connections to prevent the system from serving legitimate users. Existing defenses against DoS attacks on VoIP systems maintain full state information and thus are not scalable to implement at core routers. To this end, we adopt a two-layer aggregation scheme, termed Advanced Partial Completion Filters (APCF), to defend against DoS attacks without tracking state information of each individual connection. APCF provides adjustable control parameters so that both false alarms and detection rate can be controlled.

Description

©2009 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.

Keywords

Citation

Hamidi, A.; Ganti, S.; Kui Wu; , "An Aggregative Approach for Scalable Detection of DoS Attacks," Global Telecommunications Conference, 2008. IEEE GLOBECOM 2008. IEEE , vol., no., pp.1-5, Nov. 30 2008-Dec. 4 2008

URI

http://hdl.handle.net/1828/2613

Collections

Faculty Publications (Engineering)
 
University of Victoria Libraries

We acknowledge and respect the Lək̓ʷəŋən (Songhees and Esquimalt) Peoples on whose territory the university stands, and the Lək̓ʷəŋən and W̱SÁNEĆ Peoples whose historical relationships with the land continue to this day.