• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>IEEE Conference on Communications and Network Security >Automatic alerts annotation for improving DDoS mitigation systems
【24h】

Automatic alerts annotation for improving DDoS mitigation systems

机译:自动警报注释,用于改善DDoS缓解系统

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Distributed Denial of Service (DDoS) attacks have been on the rise [1]. With the use of Botnets, an attacker can bring down vital applications and services available on the Internet [2], [3]. Several commercial DDoS mitigation services are available including those by Verisign [4], GigeNET [5], BlockDOS [6], Black Lotus [7], and Arbor Networks [8], among others. A majority of these commercial services use a combination of specialized hardware and a rule-based software to flag suspected traffic and alert the operators for further attentions. In this work, our goal is to design a system to reduce the false positive alerts generated by the existing DDoS mitigation in place while capturing all of the true alerts. To this end, we present a preliminary analysis of real DDoS data collected in operations. Furthermore, in this work we propose a system that uses machine learning techniques to work in tandem with the existing rule-based system to ease the burden on the mitigation team. Additionally, we analyze the alerts generated by the system and provide suggestions to improve the working of the existing DDoS mitigations system.
机译:分布式拒绝服务(DDoS)攻击正在上升[1]。通过使用僵尸网络,攻击者可以破坏Internet上可用的重要应用程序和服务[2],[3]。可以使用几种商业DDoS缓解服务,包括Verisign [4],GigeNET [5],BlockDOS [6],Black Lotus [7]和Arbor Networks [8]。这些商业服务中的大多数使用专用硬件和基于规则的软件的组合来标记可疑流量,并警告运营商进一步的注意。在这项工作中,我们的目标是设计一个系统,以减少现有的现有DDoS缓解措施所产生的误报警报,同时捕获所有真实警报。为此,我们对运营中收集的实际DDoS数据进行了初步分析。此外,在这项工作中,我们提出了一个系统,该系统使用机器学习技术与现有的基于规则的系统协同工作,以减轻缓解团队的负担。此外,我们分析了系统生成的警报,并提供了改善现有DDoS缓解系统工作的建议。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号