Detecting DDoS Attacks Based on Network Connection Statistics

Qing-tao WU,You-gen ZHANG,Zhi-qing SHAO
DOI: https://doi.org/10.3969/j.issn.1006-3080.2006.05.019
2006-01-01
Abstract:Distributed Denial-of-Service (DDoS) attacks are a major threat to availability of computer networks. In this paper, a novel scheme for early detection of DDoS attacks is proposed, which is involved with probability distributions of normal behavior on computer networks and DDoS attacks detection model. The scheme employed statistical analysis of data from network connections to generate the probability distributions of normal network connections. Based on the probability distributions, DDoS attacks detection model is presented. The feasibility of the scheme is validated through the simulated test. The experimental results show the effectiveness of our scheme in detecting DDoS attacks. Also, this scheme provides some direction significance for other network security detection research.
What problem does this paper attempt to address?