Design and Implementation of an SNMP-Based Traffic Flooding Attack Detection System

Authors:
Jun-Sang Park;Myung-Sup Kim
Affiliations:
Dept. of Computer and Information Science, Korea University, Korea;Dept. of Computer and Information Science, Korea University, Korea
Venue:
APNOMS '08 Proceedings of the 11th Asia-Pacific Symposium on Network Operations and Management: Challenges for Next Generation Network Operations and Service Management
Year:
2008

Citing 3
Cited 2

Network Fault Management Based on SNMP Agent Groups

ICDCSW '01 Proceedings of the 21st International Conference on Distributed Computing Systems
Inferring internet denial-of-service activity

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10
A SNMP-based platform for distributed stateful intrusion detection in enterprise networks

IEEE Journal on Selected Areas in Communications

Traffic flooding attack detection with SNMP MIB using SVM

Computer Communications
Ensemble-based DDoS detection and mitigation model

Proceedings of the Fifth International Conference on Security of Information and Networks

Quantified Score

Hi-index	0.00

Visualization

Abstract

Recently, as traffic flooding attacks such as DoS/DDoS and Internet Worm have posed devastating threats to network services, rapid detection and proper response mechanisms are the major concern for secure and reliable network services. However, most of the current Intrusion Detection Systems (IDSs) focus on detail analysis of packet data, which results in late detection and a high system burden to cope with high-speed network traffic. In this paper we propose an SNMP-based lightweight and fast detection algorithm for traffic flooding attacks, which minimizes the processing and network overhead of the detection system, minimizes the detection time, and provides high detection rate.