Design and Simulation of a Tree-Based Intrusion Detection System against Denial of Service
2010 ◽
Vol 29-32
◽
pp. 790-795
Keyword(s):
Based on analysis of relative and absolute traffic anomalies a fully DIDS(Distributed Intrusion Detection System) is built to detect and respond flooding DoS(Denial of Service) in a specific network area, using traffic trees as data structure to store, execute, communicate and combine abnormal data. A single component settled in a network element is called Tree-Devices and all Tree-Devices construct a Tree-DIDS, a fully DIDS. Tree-Devices communicate with other devices in three ways and collaborate to detect attacks, by which communication cost is reduced. Fully architecture avoids the single point failure, while double anomalies help to warn earlier. The simulation results and performance analysis show that Tree-DIDS works effectively.
2019 ◽
Vol 9
(6)
◽
pp. 4951
2011 ◽
Vol 36
(1)
◽
pp. 1-8
◽
2016 ◽
Vol 10
(8)
◽
pp. 145-150
2021 ◽