Home | About RECERCAT | Contact
Català | Castellano

All of RECERCAT

By Communities &
Collections By Defense Date By Authors By Titles By Subject

This Collection

By Defense Date By Authors By Titles By Subject 

Statistics

View Statistics All RECERCAT

My RECERCAT

Login E-mail Alerts
Other repositories directory 
RECERCAT Home > Universitat Politècnica de Catalunya > Documents de recerca > View document

To access the full text documents, please follow this link: http://hdl.handle.net/2117/9989

Title: Adaptive distributed mechanism againts flooding network attacks based on machine learning
Author: Berral García, Josep Lluís; Poggi Mastrokalo, Nicolas; Alonso López, Javier; Gavaldà Mestre, Ricard; Torres Viñals, Jordi; Parashar, Manish
Other authors: Universitat Politècnica de Catalunya. Departament d'Arquitectura de Computadors; Universitat Politècnica de Catalunya. Departament de Llenguatges i Sistemes Informàtics; Universitat Politècnica de Catalunya. CAP - Grup de Computació d'Altes Prestacions; Universitat Politècnica de Catalunya. LARCA - Laboratori d'Algorísmia Relacional, Complexitat i Aprenentatge
Abstract: Adaptive techniques based on machine learning and data mining are gaining relevance in self-management and self- defense for networks and distributed systems. In this paper, we focus on early detection and stopping of distributed flooding attacks and network abuses. We extend the framework proposed by Zhang and Parashar (2006) to cooperatively detect and react to abnormal behaviors before the target machine collapses and network performance degrades. In this framework, nodes in an intermediate network share infor- mation about their local traffic observations, improving their global traffic perspective. In our proposal, we add to each node the ability of learning independently, therefore reacting differently according to its situation in the network and local traffic conditions. In particular, this frees the administrator from having to guess and manually set the parameters distinguishing attacks from non-attacks: now such thresholds are learned and set from experience or past data. We expect that our framework provides a faster detection and more accuracy in front of distributed ooding attacks than if static filters or single-machine adaptive mechanisms are used. We show simulations where indeed we observe a high rate of stopped attacks with minimum disturbance to the legitimate users.
Subject(s): -Àrees temàtiques de la UPC::Informàtica::Seguretat informàtica
-Computer networks -- Security measures
-Machine Learning
-Flooding Attacks
-DDoS
-Autonomic Computing
-Cooperative
-Intrusion Detection
-Ordinadors, Xarxes d' -- Mesures de seguretat
-Aprenentatge automàtic
Rights:
Document type: Article - Published version
Conference Object
Published by: ACM Press, NY
Share:          

Show full item record

Related documents

Other documents of the same author

Adaptive on-line software aging prediction based on machine learning
Alonso López, Javier; Torres Viñals, Jordi; Berral García, Josep Lluís; Gavaldà Mestre, Ricard
J2EE instrumentation for software aging root cause application component determination with AspectJ
Alonso López, Javier; Torres Viñals, Jordi; Berral García, Josep Lluís; Gavaldà Mestre, Ricard
Predicting web server crashes: a case study in comparing prediction algorithms
Alonso López, Javier; Torres Viñals, Jordi; Gavaldà Mestre, Ricard
Energy-efficient and multifaceted resource management for profit-driven virtualized data centers
Goiri Presa, Íñigo; Berral García, Josep Lluís; Fitó, Josep Oriol; Julià Massó, Ferran; Nou Castell, Ramon; Guitart Fernández, Jordi; Gavaldà Mestre, Ricard; Torres Viñals, Jordi
Empowering automatic data-center management with machine learning
Berral García, Josep Lluís; Gavaldà Mestre, Ricard; Torres Viñals, Jordi
Accesibility | Legal note | Cookies Policy
 

Coordination

 

Supporters