Please use this identifier to cite or link to this item:
https://repository-scidap.cvtisr.sk//jspui/handle/123456789/23| Title: | Syn Flood Attack Detection and Type Distinguishing Mechanism Based on Counting Bloom Filter |
| Authors: | Halagan, Tomáš Kováčik, Tomáš Trúchly, Peter Binder, Andrej |
| Keywords: | DoS detection DoS identification Counting Bloom Filter TCP SYN Flood attack Network security |
| Issue Date: | Nov-2015 |
| Publisher: | Springer, Cham |
| Abstract: | Presented work focuses onto proposal, implementation and evaluation of the new method for detection and type identification of SYN flood (DoS) attacks. The method allows distinguishing type of detected SYN flood attacks – random, subnet or fixed. Based on Counting Bloom filter, the attack detection and identification algorithm is proposed, implemented and evaluated in KaTaLyzer network traffic monitoring tool. Proof of correctness of the approach for TCP SYN flood attack detection and type identification is provided – both in practical and theoretical manners. In practice, new module for KaTaLyzer is implemented and TCP attacks are detected, identified and network administrator is notified about them in real-time. |
| URI: | https://doi.org/10.1007/978-3-319-24315-3_4 https://repository-scidap.cvtisr.sk//xmlui/handle/123456789/23 |
| ISBN: | 978-3-319-24314-6 |
| Appears in Collections: | Kapitoly |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| Halagan2015_Chapter_SynFloodAttackDetectionAndType.pdf | 755.12 kB | application/pdf | View/Open | |
| crepc_1.txt | 4.81 kB | Text | View/Open |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.