Author: Hoang Xuan Dau Pham Hong Ky
Publisher: MDPI
E-ISSN: 1999-5903|8|4|52-52
ISSN: 1999-5903
Source: Future Internet, Vol.8, Iss.4, 2016-10, pp. : 52-52
Disclaimer: Any content in publications that violate the sovereignty, the constitution or regulations of the PRC is not accepted or approved by CNPIEC.
Abstract
On the high-speed connections of the Internet or computer networks, the IP (Internet Protocol) packet traffic passing through the network is extremely high, and that makes it difficult for network monitoring and attack detection applications. This paper reviews methods to find the high-occurrence-frequency elements in the data stream and applies the most efficient methods to find Hot-IPs that are high-frequency IP addresses of IP packets passing through the network. Fast finding of Hot-IPs in the IP packet stream can be effectively used in early detection of DDoS (Distributed Denial of Service) attack targets and spreading sources of network worms. Research results show that the Count-Min method gives the best overall performance for Hot-IP detection thanks to its low computational complexity, low space requirement and fast processing speed. We also propose an early detection model of DDoS attack targets based on Hot-IP finding, which can be deployed on the target network routers.
Related content
SDN Based Collaborative Scheme for Mitigation of DDoS Attacks
By Hameed Sufian Ahmed Khan Hassan
Future Internet, Vol. 10, Iss. 3, 2018-02 ,pp. :
Anticipation of Traffic Demands to Guarantee QoS in IP/Optical Networks
Future Internet, Vol. 2, Iss. 3, 2010-09 ,pp. :