Design and Simulation of a Tree-Based Intrusion Detection System against Denial of Service

Abstract:

Article Preview

Based on analysis of relative and absolute traffic anomalies a fully DIDS(Distributed Intrusion Detection System) is built to detect and respond flooding DoS(Denial of Service) in a specific network area, using traffic trees as data structure to store, execute, communicate and combine abnormal data. A single component settled in a network element is called Tree-Devices and all Tree-Devices construct a Tree-DIDS, a fully DIDS. Tree-Devices communicate with other devices in three ways and collaborate to detect attacks, by which communication cost is reduced. Fully architecture avoids the single point failure, while double anomalies help to warn earlier. The simulation results and performance analysis show that Tree-DIDS works effectively.

Info:

Periodical:

Edited by:

Honghua Tan

Pages:

790-795

DOI:

10.4028/www.scientific.net/AMM.29-32.790

Citation:

Y. Bai and Z. Y. Bai, "Design and Simulation of a Tree-Based Intrusion Detection System against Denial of Service", Applied Mechanics and Materials, Vols. 29-32, pp. 790-795, 2010

Online since:

August 2010

Export:

Price:

$35.00

In order to see related information, you need to Login.

In order to see related information, you need to Login.