Issue No. 01 - January/February (2006 vol. 10)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MIC.2006.5
Glenn Carl , Pennsylvania State University
George Kesidis , Pennsylvania State University
Richard R. Brooks , Clemson University
Suresh Rai , Louisiana State University
Denial-of-service (DoS) detection techniques--such as activity profiling, changepoint detection, and wavelet-based signal analysis--face the considerable challenge of discriminating network-based flooding attacks from sudden increases in legitimate activity or flash events. This survey of techniques and testing results provides insight into our ability to successfully identify DoS flooding attacks. Although each detector shows promise in limited testing, none completely solve the detection problem.Combining various approaches with experienced network operators will most likely produce the best results.
denial-of-service, DoS, flooding attacks
G. Carl, S. Rai, G. Kesidis and R. R. Brooks, "Denial-of-Service Attack-Detection Techniques," in IEEE Internet Computing, vol. 10, no. , pp. 82-89, 2006.