Zhaomin Chen, Thi Ngoc Diep Pham, Chai Kiat Yeo, Bu Sung Lee, Chiew Tong Lau
{"title":"FRRED: Fourier robust RED algorithm to detect and mitigate LDoS attacks","authors":"Zhaomin Chen, Thi Ngoc Diep Pham, Chai Kiat Yeo, Bu Sung Lee, Chiew Tong Lau","doi":"10.1109/ZINC.2017.7968651","DOIUrl":null,"url":null,"abstract":"As most of consumer electronics are connected to the Internet, network attacks can cause massive damage and loss of data to the users. By sending periodic packet bursts to bottleneck routers, Low-Rate Denial-of-Service (LDoS) attacks can degrade the throughput of TCP applications while being hard to be detected. In this paper, we introduce Power Spectrum Density Entropy (PSD-entropy) to detect LDoS attacks. We also propose a Fourier transform based Robust RED (FRRED) queuing algorithm to preserve TCP throughput when faced with LDoS attacks. This novel Active Queue Management (AQM) Algorithm firstly detects the suspicious attack packets based on their arrival time and then filter the attack packets based on Power Spectrum Density (PSD) entropy. We perform extensive simulations in NS-3 to evaluate the performance of FRRED. Compared to other AQM algorithms, FRRED has the lowest False Positive Rate and can preserve nearly the full TCP throughput.","PeriodicalId":307604,"journal":{"name":"2017 Zooming Innovation in Consumer Electronics International Conference (ZINC)","volume":"3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 Zooming Innovation in Consumer Electronics International Conference (ZINC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ZINC.2017.7968651","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 14
Abstract
As most of consumer electronics are connected to the Internet, network attacks can cause massive damage and loss of data to the users. By sending periodic packet bursts to bottleneck routers, Low-Rate Denial-of-Service (LDoS) attacks can degrade the throughput of TCP applications while being hard to be detected. In this paper, we introduce Power Spectrum Density Entropy (PSD-entropy) to detect LDoS attacks. We also propose a Fourier transform based Robust RED (FRRED) queuing algorithm to preserve TCP throughput when faced with LDoS attacks. This novel Active Queue Management (AQM) Algorithm firstly detects the suspicious attack packets based on their arrival time and then filter the attack packets based on Power Spectrum Density (PSD) entropy. We perform extensive simulations in NS-3 to evaluate the performance of FRRED. Compared to other AQM algorithms, FRRED has the lowest False Positive Rate and can preserve nearly the full TCP throughput.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
