| 基于主成分分析的拒绝服务和网络探测攻击检测 |
| |
| 引用本文: | 李洁颖,邵超.基于主成分分析的拒绝服务和网络探测攻击检测[J].计算机应用,2012,32(6):1620-1622. |
| |
| 作者姓名: | 李洁颖 邵超 |
| |
| 作者单位: | 河南财经政法大学 计算机与信息工程学院,郑州 450000 |
| |
| 基金项目: | 国家自然科学基金资助项目,河南省基础与前沿技术研究项目 |
| |
| 摘 要: | 针对拒绝服务和网络探测攻击难以检测的问题,提出了一种新的基于主成分分析的拒绝服务和网络探测攻击检测方法。首先在攻击流量和正常流量数据集上应用主成分分析,得到所有流量数据集的各种不同统计量;然后依据这些统计量构造攻击检测模型。实验表明:该模型检测拒绝服务和网络探测攻击的检测率达到99%;同时能够让受攻击对象在有限的时间内做出反应,减少攻击对服务器的危害程度。
|
| 关 键 词: | 主成分分析 拒绝服务 网络探测攻击 |
| 收稿时间: | 2011-11-23 |
| 修稿时间: | 2012-01-16 |
Detection of denial of service and network probing attacks based on principal component analysis |
| |
| LI Jie-ying
,
SHAO Chao.Detection of denial of service and network probing attacks based on principal component analysis[J].journal of Computer Applications,2012,32(6):1620-1622. |
| |
| Authors: | LI Jie-ying SHAO Chao |
| |
| Affiliation: | School of Computer and Information Engineering, Henan University of Economics and Law, Zhengzhou Henan 450000, China |
| |
| Abstract: | To solve the problem of detecting Denial of Service(DoS) and network probing attacks,a new method based on Principal Component Analysis(PCA) was proposed in this paper.PCA was done on both attack and normal traffic to collect various statistics,and then the detection model was constructed based on these statistics.At last,this paper utilized the threshold of the statistics to achieve a fixed rate of false alarms.The experimental results show that this approach can detect DoS and network probing attacks effectively,and yield 99 percent detection rate;in addition,security masters can make responses in time and the responses can reduce the loss under real-time attacks. |
| |
| Keywords: | Principal Component Analysis(PCA) load value Denial of Service(DoS) network probing attacks |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《计算机应用》浏览原始摘要信息 |
|
点击此处可从《计算机应用》下载全文 |
