BROWSE
Detail
Journal Article
Web Page Request Behavior Analysis for Threshold based HTTP GET Flooding Attack Detection
Cited 0 time in 
Share 
Share
- Authors
- Yangseo Choi, Ikkyun Kim, Eul Gyu Im
- Issue Date
- 2013-08
- Citation
- Information : An International Interdisciplinary Journal, v.16, no.8(B), pp.6025-6040
- ISSN
- 1343-4500
- Publisher
- International Information Institute
- Language
- English
- Type
- Journal Article
- Abstract
- The HTTP GET Flooding attack is one of the most frequently tried distributed denial-of-service (DDoS) attack. Especially, the sophisticated HTTP GET Flooding attack is very popular and has very similar traffic characteristics to normal one. So, it is quite difficult to detect it. Even though several detection algorithms are developed for the attack, they need lots of system resources [12, 13]. Sometimes due to the time consuming processes the whole performance of DDoS defense systems is degraded and it becomes another problem. For that, we propose a threshold based HTTP GET Flooding attack detection algorithm. Usually, threshold based detection methods can't detect the sophisticated DDoS attacks, but the proposed method develop a new threshold based on the HTTP GET request behavior analysis. In this algorithm, for behavior based threshold generation, we calculate the Average Inter-GET-Request-Packet- Exist-TS-Gap (AIGG) based on two special time periods. Also, the proposed algorithm doesn't need to analyze every HTTP GET request packet, so it needs less CPU resources than the algorithms which have to analyze all the request packets. © 2013 International Information Institute.
- KSP Keywords
- Attack Detection, Behavior analysis, Behavior based, DDoS attacks, DDoS defense, Defense system, Detection Method, Detection algorithm, Distributed denial-of-service(DDoS), HTTP GET flooding, Threshold based