The Transactions of the Korea Information Processing Society (한국정보처리학회논문지)
- Volume 6 Issue 11
- /
- Pages.3011-3019
- /
- 1999
- /
- 1226-9190(pISSN)
Intrusion Detection System for Denial of Service Attack using Performance Signature
성능 시그네쳐를 이용한 서비스 거부 공격 침입탐지 시스템 설계
- Kim, Gwang-Deuk ;
- Lee, Sang-Ho (Dept. of Computer Engineering, Chungbuk National University)
- Published : 1999.11.01
Abstract
Denial of service is about knocking off services, without permission for example through crashing the whole system. This kind of attacks are easy to launch and it is hard to protect a system against them. The basic problem is that Unix assumes that users on the system or on other systems will be well behaved. This paper analyses system-based inside denial of services attack(DoS) and system metric for performance of each machine provided. And formalize the conclusions results in ways that clearly expose the performance impact of those observations. So, we present new approach. It is detecting DoS attack using performance signature for system and program behavior. We present new approach. It is detecting DoS attack using performance signature for system and program behavior. We believe that metric will be to guide to automated development of a program to detect the attack. As a results, we propose the AIDPS(Architecture for Intrusion Detection using Performance Signature) model to detect DoS attack using performance signature.
Keywords