Detection of Syn Flooding Attacks using Linear Prediction Analysis

Detection of Syn Flooding Attacks using Linear Prediction Analysis

This paper presents a simple but fast and effective method to detect TCP SYN flooding attacks. Linear prediction analysis is proposed as a new paradigm for DoS attack detection. The proposed SYN flooding detection mechanism makes use of the exponential backoff property of TCP used during timeouts. B...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Divakaran, D.M., Murthy, H.A., Gonsalves, T.A.
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Computer crime
Computer science
Computer security
Delay
DoS attack
Exponential Backoff
Fault detection
Floods
Large-scale systems
Linear prediction analysis
Mechanical factors
TCP SYN flooding
Traffic control
Web and internet services
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:This paper presents a simple but fast and effective method to detect TCP SYN flooding attacks. Linear prediction analysis is proposed as a new paradigm for DoS attack detection. The proposed SYN flooding detection mechanism makes use of the exponential backoff property of TCP used during timeouts. By modeling the difference of SYN and SYN+ACK packets, we are successfully able to detect an attack within short delays. We use this method at leaf routers and firewalls to detect the attack without the need of maintaining any state
ISSN:1531-2216
2332-5798
DOI:10.1109/ICON.2006.302563