کد مقاله کد نشریه سال انتشار مقاله انگلیسی نسخه تمام متن
424669 685619 2013 13 صفحه PDF دانلود رایگان
عنوان انگلیسی مقاله ISI
A confidence-based filtering method for DDoS attack defense in cloud environment
موضوعات مرتبط
مهندسی و علوم پایه مهندسی کامپیوتر نظریه محاسباتی و ریاضیات
پیش نمایش صفحه اول مقاله
A confidence-based filtering method for DDoS attack defense in cloud environment
چکیده انگلیسی

Distributed Denial-of-Service attack (DDoS) is a major threat for cloud environment. Traditional defending approaches cannot be easily applied in cloud security due to their relatively low efficiency, large storage, to name a few. In view of this challenge, a Confidence-Based Filtering method, named CBF, is investigated for cloud computing environment, in this paper. Concretely speaking, the method is deployed by two periods, i.e., non-attack period and attack period. More specially, legitimate packets are collected in the non-attack period, for extracting attribute pairs to generate a nominal profile. With the nominal profile, the CBF method is promoted by calculating the score of a particular packet in the attack period, to determine whether to discard it or not. At last, extensive simulations are conducted to evaluate the feasibility of the CBF method. The result shows that CBF has a high scoring speed, a small storage requirement, and an acceptable filtering accuracy. It specifically satisfies the real-time filtering requirements in cloud environment.


► Distributed Denial-of-Service attack (DDoS) is a major threat on internet.
► A confidence-based filtering method (CBF) for the security of cloud environment.
► CBF has a small storage requirement, and an acceptable filtering accuracy.

ناشر
Database: Elsevier - ScienceDirect (ساینس دایرکت)
Journal: Future Generation Computer Systems - Volume 29, Issue 7, September 2013, Pages 1838–1850
نویسندگان
, , ,