Detection of LDDoS Attack Based on Kalman Filtering

WU Zhi-jun; YUE Meng

您当前的位置：

首页 >

文章列表页 >

Detection of LDDoS Attack Based on Kalman Filtering

更新时间：2025-07-16

- Detection of LDDoS Attack Based on Kalman Filtering
- Acta Electronica Sinica Vol. 36, Issue 8, Pages: 1590-1594(2008)
- 作者机构：
  
  中国民航大学电子信息工程学院,天津,300300
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP309
- Published：2008
- 稿件说明：
移动端阅览
WU Zhi-jun, YUE Meng. Detection of LDDoS Attack Based on Kalman Filtering[J]. Acta Electronica Sinica, 2008, 36(8): 1590-1594.
DOI：

WU Zhi-jun, YUE Meng. Detection of LDDoS Attack Based on Kalman Filtering[J]. Acta Electronica Sinica, 2008, 36(8): 1590-1594. DOI：

摘要

低速率分布式拒绝服务LDDoS(Low-rate Distributed Denial of Service)攻击是一种新型的DDoS攻击.它利用TCP协议超时重传RTO(Retransmission Time Out)机制

向受害者发送周期性的脉冲(Pulse)攻击.LDDoS平均攻击速率较低

因此它能躲避传统的检测方法.本文针对LDDoS攻击提出了一种基于卡尔曼(Kalman)滤波的检测方法

采用一步预测与最优估算的误差值作为检测依据.通过模拟仿真和在实际网络环境中测试

得到89.6%的检测率.实验结果表明本文方法能有效地检测出LDDoS攻击.

Abstract

LDDoS (Low-rate Distributed Denial of Service) attack is a new class of DDoS

which exploits TCP’s RTO (Retransmission Time Out) mechanism.An LDDoS attack can elude the monitor of traditional detection approach by sending low-rate packets in the way of periodic pulse to a victim.This paper proposes an approach of detecting LDDoS attack based on kalman filter.The error between one step prediction and the optimal estimation is used as the detection criterion.Experiments in simulation environment and practical network are conducted to test the detect performance and about 89.6% detect probability is achieved.Results show that this approach has an expected effect in detecting LDDoS attack.

关键词

Keywords

references

Views

1017

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Study on Router Buffer Size with NewReno Congestion Control Method

Technique of Two Searches on SITAN Algorithm for Seabed Terrain-Aided Navigation

CB-HSTCP:Fair TCP in High-speed Network

The Scheme of Highest-Rate-Flow Early Discard for Buffer Management

Related Author

李广侠

常江

吕晶

李罡

WU Jian-ping

ZHAO You-jian

WANG Dong

GUAN Hong-tao

Related Institution

Key Laboratory of Satellite Communications,PLA University of Science and Technology

清华大学计算机科学与技术系

Department of Automatic ControlSchool of Information Science and TechnologyBeijing Institute of TechnologyBeijing 100081China

Beijing Key Laboratory of Spatial Information Integration and ApplicationsPeking UniversityBeijing 100871China

Department of Automatic Control,School of Information Science and Technology,Beijing Institute of Technology

⁰