One-way queuing delay measurement and its application on detecting DDoS attack |
| |
Authors: | Wei-Zhou Lu Wei-Xuan Gu Shun-Zheng Yu |
| |
Affiliation: | 1. Department of Computer Engineering, Urmia Branch, Islamic Azad University, Urmia, Iran;2. Computer Engineering Department, Islamic Azad University, North Tehran Branch, Tehran, Iran;3. Computer Engineering Department, Urmia University, Urmia, Iran;4. Iran Telecommunication Research Center, ITRC, Tehran, Iran;1. DIET, Sapienza Universiy of Rome, Via Eudossiana 18, 00184 Rome, Italy;2. FTW – Forschungszentrum Telekommunikation Wien, Donau-City-St. 1, 1220 Vienna, Austria;3. DII, University of Salento, Campus Ecotekne, Via per Monteroni, 73100 Lecce, Italy;4. Department of Computer Science, ETH, Universitätstrasse 6, 8092 Zurich, Switzerland;1. Dept. of Computer Science & Engg., Kaziranga University, Jorhat 785006, Assam, India;2. Dept. of Computer Science & Engg., Tezpur University, Tezpur 784028, Assam, India;3. Dept. of Computer Science, University of Colorado, Colorado Springs, CO 80918, USA |
| |
Abstract: | This paper presents a novel approach to measure and estimate end-to-end one-way queuing delay in a network, which carries information about traffic characteristics and congestion properties. The measurement results can be used to describe the normal behavior of the network and detect distributed denial-of-service attacks (DDoS attacks). The measurement does not require any synchronization between the two measurement ends. Pairs of probe packets are sent from the source to the destination and intra-gaps between the probes are separately measured at the two ends. By performing an iterative Fourier-to-time reconstruction algorithm on the measured intra-gaps, distribution of the end-to-end one-way queuing delay is estimated. The packet loss rate and delay jitter are simultaneously measured as well. The simulations and experiments are conducted to validate the approach. |
| |
Keywords: | |
本文献已被 ScienceDirect 等数据库收录! |
|