Visible to the public Fast Detection and Mitigation to DDoS Web Attack Based on Access Frequency

TitleFast Detection and Mitigation to DDoS Web Attack Based on Access Frequency
Publication TypeConference Paper
Year of Publication2019
AuthorsTran, Thang M., Nguyen, Khanh-Van
Conference Name2019 IEEE-RIVF International Conference on Computing and Communication Technologies (RIVF)
Keywordsaccess frequency, attack packets, Botnet, composability, Computer crime, data structures, DDoS attack detection, DDoS attack mitigation, DDoS Attacks, DDoS Detection and Mitigation, DDoS Web attack, hacker botnets, Human Behavior, immediate defense mechanism, Internet, IP networks, Metrics, Processing time, Protocols, pubcrawl, realtime attack response, Resiliency, security of data, storage space, Time-frequency Analysis, Web applications, Web request, Web servers

We have been investigating methods for establishing an effective, immediate defense mechanism against the DDoS attacks on Web applications via hacker botnets, in which this defense mechanism can be immediately active without preparation time, e.g. for training data, usually asked for in existing proposals. In this study, we propose a new mechanism, including new data structures and algorithms, that allow the detection and filtering of large amounts of attack packets (Web request) based on monitoring and capturing the suspect groups of source IPs that can be sending packets at similar patterns, i.e. with very high and similar frequencies. The proposed algorithm places great emphasis on reducing storage space and processing time so it is promising to be effective in real-time attack response.

Citation Keytran_fast_2019