10 August 2004 Detection of UDP-flood attack with hidden Markov models
Author Affiliations +
A scheme that uses the hidden Markov model (HMM) is proposed in this work to detect unauthorized nuisance packets in IP networks, which waste network resources and may result in the denial of service (DoS) attack. The proposed HMM is designed to differentiate the attack traffic from the normal traffic systematically. The design of the basic HMM model is first introduced, and the operations of the detector are then described in detail. Finally, we show that the detector using HMM is not sensitive to various attack types and able to detect the attack at an earlier stage.
© (2004) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Junghun Park, Junghun Park, Lei Huang, Lei Huang, C.-C. Jay Kuo, C.-C. Jay Kuo, } "Detection of UDP-flood attack with hidden Markov models", Proc. SPIE 5440, Digital Wireless Communications VI, (10 August 2004); doi: 10.1117/12.542358; https://doi.org/10.1117/12.542358

Back to Top