Resisting Web Proxy-Based HTTP Attacks by Temporal and Spatial Locality Behavior

Xie Yi; Tang S.; Xiang Y.; Hu J.

首页> 外文期刊>IEEE Transactions on Parallel and Distributed Systems >Resisting Web Proxy-Based HTTP Attacks by Temporal and Spatial Locality Behavior

【24h】

Resisting Web Proxy-Based HTTP Attacks by Temporal and Spatial Locality Behavior

机译：通过时间和空间局部行为抵制基于Web代理的HTTP攻击

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

A novel server-side defense scheme is proposed to resist the Web proxy-based distributed denial of service attack. The approach utilizes the temporal and spatial locality to extract the behavior features of the proxy-to-server traffic, which makes the scheme independent of the traffic intensity and frequently varying Web contents. A nonlinear mapping function is introduced to protect weak signals from the interference of infrequent large values. Then, a new hidden semi-Markov model parameterized by Gaussian-mixture and Gamma distributions is proposed to describe the time-varying traffic behavior of Web proxies. The new method reduces the number of parameters to be estimated, and can characterize the dynamic evolution of the proxy-to-server traffic rather than the static statistics. Two diagnosis approaches at different scales are introduced to meet the requirement of both fine-grained and coarse-grained detection. Soft control is a novel attack response method proposed in this work. It converts a suspicious traffic into a relatively normal one by behavior reshaping rather than rudely discarding. This measure can protect the quality of services of legitimate users. The experiments confirm the effectiveness of the proposed scheme.

机译：提出了一种新颖的服务器端防御方案，以抵抗基于Web代理的分布式拒绝服务攻击。该方法利用时间和空间局部性来提取代理到服务器流量的行为特征，这使得该方案独立于流量强度和频繁变化的Web内容。引入了非线性映射功能以保护微弱的信号免受罕见的大数值干扰。然后，提出了一种由高斯混合和伽马分布参数化的新的隐马尔可夫模型，用于描述Web代理的时变流量行为。新方法减少了要估计的参数数量，并且可以表征代理到服务器流量的动态演变，而不是静态统计。介绍了两种不同规模的诊断方法，以满足细粒度和粗粒度检测的要求。软控制是这项工作中提出的一种新颖的攻击响应方法。它通过重塑行为而不是不加选择地将可疑流量转换为相对正常的流量。该措施可以保护合法用户的服务质量。实验证实了该方案的有效性。

著录项

来源
《IEEE Transactions on Parallel and Distributed Systems》 |2013年第7期|1401-1410|共10页
作者
Xie Yi; Tang S.; Xiang Y.; Hu J.;
展开▼
作者单位

Sun Yat-Sen University, Guangzhou|c|;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Traffic analysis; attack detection; attack response; distributed denial of service attack; traffic modeling;

机译：流量分析;攻击检测;攻击响应;分布式拒绝服务攻击;流量建模;

相似文献

外文文献
中文文献
专利

1. Resisting Proxy-Based Attacks Based On Temporal and Spatial Locality Behaviour [J] . Sai Subha.V, Arathi G, hi International Journal of Innovative Research in Science, Engineering and Technology . 2014,第5期

机译：基于时空局部性行为的基于代理的攻击
2. HTTP-sCAN: Detecting HTTP-flooding attack by modeling multi-features of web browsing behavior from noisy web-logs [J] . Wang Jin, Zhang Min, Yang Xiaolong, Communications, China . 2015,第2期

机译：HTTP-sCAN：通过从嘈杂的Web日志中建模Web浏览行为的多种功能来检测HTTP泛洪攻击
3. Temporal and Spatial Foraging Behavior of the Larvae of the Fall WebwormHyphantria cunea [J] . Terrence D.Fitzgerald Psyche . 2015,第3a4期

机译：秋季Webworm幼虫的时空觅食行为
4. HTTP-sCAN: Detecting HTTP-flooding attaCk by modeling multi-features of web browsing behavior from noisy dataset [C] . Jin Wang, Min Zhang, Yang Xiaolong, Asia-Pacific Conference on Communications . 2013

机译：HTTP-sCAN：通过对嘈杂的数据集中的Web浏览行为的多种功能建模，来检测HTTP泛洪攻击
5. Analysis of https overhead and minimal web certificate chain of trust [D] . Ravishankar, Rakesh. 2015

机译：分析https开销和最小的Web证书信任链
6. Commentary on Jones J, Jones KN and Peil J (2018) The impact of the legalization of recreational marijuana on college students. Addictive Behaviors 77: 255–259, https://doi.org/10.1016/j.addbeh.2017.08.015 [O] . Jacob Jones, K Nicole Jones 2003

机译：对Jones J，Jones KN和Peil J的评论（2018）休闲大麻合法化对大学生的影响。上瘾行为77：255–259，https://doi.org/10.1016/j.addbeh.2017.08.015
7. Detecting the HTTP-GET Flood Attacks Based on the Access Behavior of Inline Objects in a Web-page Using NetFlow Data [O] . Koo-Hong Kang 2016

机译：使用NetFlow数据基于网页中的内联对象的访问行为来检测HTTP-GET洪水攻击

Resisting Web Proxy-Based HTTP Attacks by Temporal and Spatial Locality Behavior

摘要

著录项

相似文献

相关主题

期刊订阅