|
|
计算机应用研究 2011
DDoS attack detection method based on Holder exponent
|
Abstract:
Based on the fractal structure of the large-scale network traffic aggregation,analyzed the fractal feature of network traffic from the perspective of the global and local scaling exponents. It used this feature to analyze the fractal parameters of abnomal network traffic,trying to identify the relationship between changes of these parameters and the emergence of DDoS. Experimental results show that network traffic have the self-similar phenomena over large-scale and the multi-fractal phenomena over-small scale. It presented a method of DDoS attack detection based on Holder exponent.On the DARPA/Lincoln laboratory intrusion detection evaluation data set 2000,the experimental result shows that this method can detect the attack quickly and accurately.When the intermittent DDoS attack happen,this method is more effective than the traditional method.
