| 基于k-Means改进算法的分布式拒绝服务攻击检测 |
| |
| 引用本文: | 刘运,殷建平,程杰仁,蔡志平.基于k-Means改进算法的分布式拒绝服务攻击检测[J].计算机工程与科学,2008,30(12):23-26. |
| |
| 作者姓名: | 刘运 殷建平 程杰仁 蔡志平 |
| |
| 作者单位: | 国防科技大学计算机学院,湖南,长沙,410073 |
| |
| 基金项目: | 国家自然科学基金资助项目,湖南省自然科学基金资助项目 |
| |
| 摘 要: | 分布式拒绝服务(DDoS)攻击是当前主要的网络安全威胁之一。本文分析了DDoS攻击的本质特征,提出了结合流量及流特征分布熵的检测策略,并根据问题需要改进了k-mea ns聚类算法,并用之建立攻击检测模型。最后,使用LLDOS1.0数据集对该模型进行测试。实验结果表明,该模型具有良好的检测精度,验证了检测策略的有效性。
|
| 关 键 词: | 分布式拒绝服务攻击 流特征分布熵 k&mdash means聚类算法 |
The Detection of Distributed Denial-of-Service Attacks Using the Improved k-Means Algorithm |
| |
| LIU Yun,YIN Jian-ping,CHENG Jie-ren,CAI Zhi-ping.The Detection of Distributed Denial-of-Service Attacks Using the Improved k-Means Algorithm[J].Computer Engineering & Science,2008,30(12):23-26. |
| |
| Authors: | LIU Yun YIN Jian-ping CHENG Jie-ren CAI Zhi-ping |
| |
| Abstract: | Distributed Denial-of-Service(DDoS)attacks are a critical threat to the Internet.This paper analyses the essential characteristics of DDoS attacks,and presents a novel detection scheme by combining the traffic volume with traffic feature distribution entropy.Furthermore,we improve the k-means clustering algorithm,which is used to establish the attack detection model.Finally we test our detection model on the LLDOS1.0 dataset.The experimental results indicate that the model leads to an improved accuracy of attack detection. |
| |
| Keywords: | DDoS attack traffic feature distribution entropy k-means clustering algorithm |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程与科学》浏览原始摘要信息 |
|
点击此处可从《计算机工程与科学》下载全文 |
