A IPCW-IDS(IP Count and WLC based Intrusion Detection System) Design of DDoS attack detection scheme

Eun-Hee Jeong; Byung-Kwan Lee

A IPCW-IDS(IP Count and WLC based Intrusion Detection System) Design of DDoS attack detection scheme

Eun-Hee Jeong

Byung-Kwan Lee

Vol. 35, No. 10, pp. 1443-1450, Oct. 2010

PDF

Abstract

This paper proposes IPCW-IDS(IP Count and WLC based Intrusion Detection System) which detects DDoS attack using destination IP address. IPCW-IDS consists of PCM(Packet Capture Module) capturing packets, WLCM(WLC Module) distributing packets by using load balancing WLC, PAA(Packet Analysis Agent) analyzing packets, IPCM(IP Count Module) counting destination IP address information, and IDM(Intrusion Detection Module) detecting DoS and DDoS attack. The IPCW-IDS proposed in this paper reduces the False Positive by using the DDoS attack detection of the following three steps. The DDoS attack is detected with destination IP address in the first step, the DDoS attack is detected with the patterns of destination IP address in the second step, and the DDoS attack is detected with the patterns of destination IP address which is counted over a critical value. Therefore, IPCW-IDS reduce the 20.83% of respective DoS attacke error detection rate(TCP) about the fixed ciritical value to 8.33% with the proposed expression, and reduce the 8 tif s of the False positive about the existing CFB to 1 tif s. In addition, IPCW-IDS difinish s some bottleneck by distributing packets to a packet analysis agent, which increases the processing speed of packets and improves the performance of IDS.

Statistics

Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

E. Jeong and B. Lee, "A IPCW-IDS(IP Count and WLC based Intrusion Detection System) Design of DDoS attack detection scheme," The Journal of Korean Institute of Communications and Information Sciences, vol. 35, no. 10, pp. 1443-1450, 2010. DOI: .

[ACM Style]

Eun-Hee Jeong and Byung-Kwan Lee. 2010. A IPCW-IDS(IP Count and WLC based Intrusion Detection System) Design of DDoS attack detection scheme. The Journal of Korean Institute of Communications and Information Sciences, 35, 10, (2010), 1443-1450. DOI: .

[KICS Style]

Eun-Hee Jeong and Byung-Kwan Lee, "A IPCW-IDS(IP Count and WLC based Intrusion Detection System) Design of DDoS attack detection scheme," The Journal of Korean Institute of Communications and Information Sciences, vol. 35, no. 10, pp. 1443-1450, 10. 2010.

A IPCW-IDS(IP Count and WLC based Intrusion Detection System) Design of DDoS attack detection scheme

Submenu

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

Recent Publications
(LAST 3 YEARS)

A IPCW-IDS(IP Count and WLC based Intrusion Detection System) Design of DDoS attack detection scheme

Submenu

Search (IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS(TOP 10 KEYWORDS)

Recent Publications(LAST 3 YEARS)

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)