A Cluster-based Approach Towards Detecting and Modeling Network Dictionary Attacks
Journal Title: Engineering, Technology & Applied Science Research - Year 2016, Vol 6, Issue 6
Abstract
In this paper, we provide an approach to detect network dictionary attacks using a data set collected as flows based on which a clustered graph is resulted. These flows provide an aggregated view of the network traffic in which the exchanged packets in the network are considered so that more internally connected nodes would be clustered. We show that dictionary attacks could be detected through some parameters namely the number and the weight of clusters in time series and their evolution over the time. Additionally, the Markov model based on the average weight of clusters,will be also created. Finally, by means of our suggested model, we demonstrate that artificial clusters of the flows are created for normal and malicious traffic. The results of the proposed approach on CAIDA 2007 data set suggest a high accuracy for the model and, therefore, it provides a proper method for detecting the dictionary attack.
Authors and Affiliations
A. Tajari Siahmarzkooh, J. Karimpour, S. Lotfi
Keywords
Related Articles
- EP ID EP110761
- DOI -
- Views 247
- Downloads 0
Fuzzy Sliding Mode Control of DC-DC Boost Converter
A sliding mode fuzzy control method which combines sliding mode and fuzzy logic control for DC-DC boost converter is designed to achieve robustness and better performance. A fuzzy sliding mode controller in which sliding...
Sensitive Constrained Optimal PMU Allocation with Complete Observability for State Estimation Solution
In this paper, a sensitive constrained integer linear programming approach is formulated for the optimal allocation of Phasor Measurement Units (PMUs) in a power system network to obtain state estimation. In this approac...
Representing IT Projects Risk Management Best Practices as a Metamodel
Although still relatively new, the field of IT Governance has its own bodies of knowledge that include various methodologies, frameworks and techniques supported by an increasing growing base of research. IT Project Risk...
Prediction of Springback in the Air Bending Process Using a Kriging Metamodel
This paper addresses the use of the kriging‏ approach to predict the springback in the air bending process. The materials and the geometrical parameters, which significantly affect the springback, were considered as inpu...
Petrophysical Evaluation of the Sarvak Formation Based on Well Logs in Dezful Embayment, Zagros Fold Zone, South West of Iran
Dezful embayment in the south west of Iran is part of Zagros fold zone which despite the small area includes almost all of Iran oil production. Sarvak Formation with middle cretaceous (Albin-Turunin) is the second bigges...