Denial of Service Attack: Detection Techniques

Denial-of-service (DoS) detection techniques such as activity profiling, change-point detection, and wavelet-based signal analysis face the considerable challenge of discriminating network-based flooding attacks from sudden increases in legitimate activity or flash events. This survey of techniques and testing results provides insight into our ability to successfully identify DoS flooding attacks. Although each detector shows promise in limited testing, none completely solve the detection problem. Combining various approaches with experienced network operators will most likely produce the best results. Denial-of-Service Attack-Detection Techniques

Linked by shanmuga Saturday, 28th January 2006 7:35AM