Detection and identification of neptune attacks and flash crowds

Authors:
The Quyen Le;Marat Zhanikeev;Yoshiaki Tanaka
Affiliations:
Global Information and Telecommunication Institute, Waseda University, Tokyo, Japan;School of International Liberal Studies, Waseda University, Tokyo, Japan;Global Information and Telecommunication Institute, Waseda University, Tokyo, Japan and Research Institute for Science and Engineering, Waseda University, Tokyo, Japan
Venue:
APNOMS'07 Proceedings of the 10th Asia-Pacific conference on Network Operations and Management Symposium: managing next generation networks and services
Year:
2007

Citing 1
Cited 0

Flash crowds and denial of service attacks: characterization and implications for CDNs and web sites

Proceedings of the 11th international conference on World Wide Web

Quantified Score

Hi-index	0.00

Visualization

Abstract

Neptune attack and Flash Crowd are two typical threats to web servers. These two anomalies have many identical features that make them difficult to distinguish. In this paper, we propose a statistical packet-based method to detect Neptune attacks and Flash Crowds and more importantly, by performing separate analysis by source address aggregation, we also propose additional efficient means to differentiate these two similar anomalies.