Network attack using TCP protocol for performing DoS and DDoS attacks

Abstract DDoS attacks detection method based on modelling the variability with the use of conditional average and variance in examined time series is proposed in this article. Variability predictions of the analyzed network traffic are realized by estimated statistical models with long-memory dependence ARFIMA, Adaptive ARFIMA, FIGARCH and Adaptive FIGARCH. We propose simple parameter estimation models with the use of maximum likelihood function. Selection of sparingly parameterized form of the models is realized by means of information criteria representing a compromise between brevity of representation and the extent of the prediction error. In the described method we propose using statistical relations between the forecasted and analyzed network traffic in order to detect abnormal behavior possibly being a result of a network attack. Performed experiments confirmed effectiveness of the analyzed method and cogency of the statistical models.

Download Full-text

DDosTC: A Transformer-Based Network Attack Detection Hybrid Mechanism in SDN

Sensors ◽

10.3390/s21155047 ◽

2021 ◽

Vol 21 (15) ◽

pp. 5047

Author(s):

Haomin Wang ◽

Wei Li

Keyword(s):

Neural Network ◽

Denial Of Service ◽

Detection Algorithm ◽

Attack Detection ◽

Target System ◽

Distributed Denial Of Service ◽

Ddos Attacks ◽

Optimal Model ◽

Network Attack ◽

Average Accuracy

Software-defined networking (SDN) has emerged in recent years as a form of Internet architecture. Its scalability, dynamics, and programmability simplify the traditional Internet structure. This architecture realizes centralized management by separating the control plane and the data-forwarding plane of the network. However, due to this feature, SDN is more vulnerable to attacks than traditional networks and can cause the entire network to collapse. DDoS attacks, also known as distributed denial-of-service attacks, are the most aggressive of all attacks. These attacks generate many packets (or requests) and ultimately overwhelm the target system, causing it to crash. In this article, we designed a hybrid neural network DDosTC structure, combining efficient and scalable transformers and a convolutional neural network (CNN) to detect distributed denial-of-service (DDoS) attacks on SDN, tested on the latest dataset, CICDDoS2019. For better verification, several experiments were conducted by dividing the dataset and comparisons were made with the latest deep learning detection algorithm applied in the field of DDoS intrusion detection. The experimental results show that the average AUC of DDosTC is 2.52% higher than the current optimal model and that DDosTC is more successful than the current optimal model in terms of average accuracy, average recall, and F1 score.

Download Full-text

VM Profile Based Optimized Network Attack Pattern Detection Scheme for DDOS Attacks in Cloud

Communications in Computer and Information Science - Security in Computing and Communications ◽

10.1007/978-3-642-40576-1_25 ◽

2013 ◽

pp. 255-261 ◽

Cited By ~ 13

Author(s):

Sanchika Gupta ◽

Padam Kumar

Keyword(s):

Pattern Detection ◽

Ddos Attacks ◽

Detection Scheme ◽

Network Attack ◽

Attack Pattern

Download Full-text

DDoS Attacks for Ad Hoc Network Based on Attack Cluster

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.546-547.1371 ◽

2012 ◽

Vol 546-547 ◽

pp. 1371-1376

Author(s):

Yao Yan ◽

Rui Xu

Keyword(s):

Aggressive Behavior ◽

Ad Hoc Network ◽

Ad Hoc ◽

Ddos Attacks ◽

Node Density ◽

Network Attack ◽

Dynamic Topology ◽

Communication Ability ◽

Hoc Networks ◽

Definition Of

Show the definition of Ad Hoc network attack cluster, and propose a new method of DDoS attacks for Ad Hoc Networks, which can accurately attack the target node, demonstrate no redundant aggressive behavior compared with the traditional attack and reduce the detection rate of aggressive behavior. Use NS2 simulation platform to build Ad Hoc network simulation scenarios with dynamic topology, and simulate DDoS attacks in this environment; The simulation results show that the new DDoS attack method can effectively reduce the communication ability of the Ad Hoc network, and increasing the attack node density will strengthen the attack effect.

Download Full-text

Botnet-Originated DDOS Attacks and their Mitigation: A new spiral in the arms race on the Internet

PsycEXTRA Dataset ◽

10.1037/e605222012-009 ◽

2011 ◽

Author(s):

William Beckett ◽

Thusitha Jayawardena

Keyword(s):

Arms Race ◽

The Internet ◽

Ddos Attacks

Download Full-text

HULK and DDoS Attacks in Web Applications with Detection Mechanism

International Journal of Emerging Research in Management and Technology ◽

10.23956/ijermt.v6i6.268 ◽

2018 ◽

Vol 6 (6) ◽

pp. 192

Author(s):

Amit Sharma

Keyword(s):

Web Applications ◽

Denial Of Service ◽

Single Server ◽

Distributed Denial Of Service ◽

Ddos Attacks ◽

Application Layer ◽

Detection Mechanism ◽

Plan Execution ◽

Social Affair ◽

Server Application

Distributed Denial of Service attacks are significant dangers these days over web applications and web administrations. These assaults pushing ahead towards application layer to procure furthermore, squander most extreme CPU cycles. By asking for assets from web benefits in gigantic sum utilizing quick fire of solicitations, assailant robotized programs use all the capacity of handling of single server application or circulated environment application. The periods of the plan execution is client conduct checking and identification. In to beginning with stage by social affair the data of client conduct and computing individual user’s trust score will happen and Entropy of a similar client will be ascertained. HTTP Unbearable Load King (HULK) attacks are also evaluated. In light of first stage, in recognition stage, variety in entropy will be watched and malevolent clients will be recognized. Rate limiter is additionally acquainted with stop or downsize serving the noxious clients. This paper introduces the FAÇADE layer for discovery also, hindering the unapproved client from assaulting the framework.

Download Full-text