Detailed Information
Cited 0 time in 
Cited 0 time in 
Cited 0 time in
Metadata Downloads
A study on efficient detection of network-based IP spoofing DDoS and malware-infected Systems
- Authors
- Seo, Jung Woo; Lee, Sang Jin
- Issue Date
- 26-Oct-2016
- Publisher
- SPRINGER INTERNATIONAL PUBLISHING AG
- Citation
- SPRINGERPLUS, v.5
- Indexed
- SCIE
SCOPUS
- Journal Title
- SPRINGERPLUS
- Volume
- 5
- ISSN
- 2193-1801
- Abstract
- Large-scale network environments require effective detection and response methods against DDoS attacks. Depending on the advancement of IT infrastructure such as the server or network equipment, DDoS attack traffic arising from a few malware-infected systems capable of crippling the organization's internal network has become a significant threat. This study calculates the frequency of network-based packet attributes and analyzes the anomalies of the attributes in order to detect IP-spoofed DDoS attacks. Also, a method is proposed for the effective detection of malware infection systems triggering IP-spoofed DDoS attacks on an edge network. Detection accuracy and performance of the collected real-time traffic on a core network is analyzed thru the use of the proposed algorithm, and a prototype was developed to evaluate the performance of the algorithm. As a result, DDoS attacks on the internal network were detected in real-time and whether or not IP addresses were spoofed was confirmed. Detecting hosts infected by malware in real-time allowed the execution of intrusion responses before stoppage of the internal network caused by large-scale attack traffic.
- Files in This Item
- There are no files associated with this item.
- Appears in
Collections - School of Cyber Security > Department of Information Security > 1. Journal Articles
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.
Related Researcher
- LEE, SANG JIN
- Department of Information Security