Evaluation on multivariate correlation analysis based denial-of-service attack detection system

Publication Type:
Conference Proceeding
ACM International Conference Proceeding Series, 2012, pp. 160 - 164
Issue Date:
Filename Description Size
Thumbnail2011006081OK.pdf Published version10.09 MB
Adobe PDF
Full metadata record
In this paper, a Denial-of-Service (DoS) attack detection system is explored, where a multivariate correlation analysis technique based on Euclidean distance is applied for network traffic characterization and the principal of anomaly-based detection is employed in attack recognition. The effectiveness of the detection system is evaluated on the KDD Cup 99 dataset and the influence of data normalization on the performance of attack detection is analyzed in this paper as well. The evaluation results and comparisons prove that the detection system is effective in distinguishing DoS attack network traffic from legitimate network traffic and outperforms two state-of-the-art systems. Copyright 2012 ACM.
Please use this identifier to cite or link to this item: