登录    注册    忘记密码

详细信息

基于主成分分析的拒绝服务和网络探测攻击检测    

Detection of denial of service and network probing attacks based on principal component analysis

文献类型:期刊文献

中文题名:基于主成分分析的拒绝服务和网络探测攻击检测

英文题名:Detection of denial of service and network probing attacks based on principal component analysis

作者:李洁颖[1];邵超[1]

第一作者:李洁颖

机构:[1]河南财经政法大学计算机与信息工程学院

第一机构:河南财经政法大学计算机与信息工程学院

年份:2012

卷号:32

期号:6

起止页码:1620-1622

中文期刊名:计算机应用

外文期刊名:Journal of Computer Applications

收录:CSTPCD;;北大核心:【北大核心2011】;CSCD:【CSCD2011_2012】;

基金:国家自然科学基金资助项目(60774041);河南省基础与前沿技术研究项目(112300410201)

语种:中文

中文关键词:主成分分析;载荷值;拒绝服务;网络探测攻击

外文关键词:Principal Component Analysis(PCA); load value; Denial of Service(DoS); network probing attacks

摘要:针对拒绝服务和网络探测攻击难以检测的问题,提出了一种新的基于主成分分析的拒绝服务和网络探测攻击检测方法。首先在攻击流量和正常流量数据集上应用主成分分析,得到所有流量数据集的各种不同统计量;然后依据这些统计量构造攻击检测模型。实验表明:该模型检测拒绝服务和网络探测攻击的检测率达到99%;同时能够让受攻击对象在有限的时间内做出反应,减少攻击对服务器的危害程度。
To solve the problem of detecting Denial of Service(DoS) and network probing attacks,a new method based on Principal Component Analysis(PCA) was proposed in this paper.PCA was done on both attack and normal traffic to collect various statistics,and then the detection model was constructed based on these statistics.At last,this paper utilized the threshold of the statistics to achieve a fixed rate of false alarms.The experimental results show that this approach can detect DoS and network probing attacks effectively,and yield 99 percent detection rate;in addition,security masters can make responses in time and the responses can reduce the loss under real-time attacks.

参考文献:

正在载入数据...

版权所有©河南财经政法大学 重庆维普资讯有限公司 渝B2-20050021-8 
渝公网安备 50019002500408号 违法和不良信息举报中心