A Novel Syn Flood Detection Mechanism for Wireless Network
Journal: International Journal of Advanced Trends in Computer Science and Engineering (IJATCSE) (Vol.4, No. 4)Publication Date: 2015-09-02
Authors : Neethu Raj P; S Suresh Babu; Nishanth N;
Page : 22-27
Keywords : SYN-flood; DDoS attack; Transport layer; Prediction; Chaos.;
Abstract
SYN flood attack is a distributed denial of service attack (DDoS). This paper presents an effective and more accurate mechanism to detect synflood attack. In the proposed SYN-flood defense mechanism, different transport layer parameters are used to characterize attack, like abnormal increase in SYN packet,SYN-ACK packets, and increase in SYN/FIN rate. Proposed mechanism uses preprocessing and prediction using AR model to predict the traffic. Lyapunov exponent developed using prediction error is used as a threshold to detect attack. Out of the three parameters analyzed using same method, at least two results must be same which is taken as the final decision. To analyze validity of proposed scheme, syn flood attack was created using NS2. Data extracted from trace file, given as an input to the detection scheme developed by MATLAB. Probability of false alarm will be very less, since all the parameters do not show abnormality at the same time in a normal traffic.
Other Latest Articles
- Secure Routing in Mobile Ad-hoc Networks Using Evidence Theory
- Energy Aware Healing in Sensors with Clutter Adaptability
- Duty-Cycle-Aware Minimum Latency Broadcast Scheduling in Clustered Multi-hop Wireless Networks
- Trust Assurance Mechanism against Gray Hole Attack in Mobile Ad Hoc Networks
- PROBLEMS OF RISK MANAGEMENT IN ENTERPRISES
Last modified: 2015-09-11 10:24:13