Detection Method of Distributed Denial-of-Service Flooding Attacks Using Analysis of Flow Information

Abstract Today, Distributed denial of service (DDoS) attack present a very serious threat to the stability of the internet. The DDoS attack, which is consuming all of the computing or communication resources necessary for the service, is known very difficult to protect. The DDoS attack usually transmits heavy traffic data to networks or servers and they cannot handle the normal service requests because of running out of resources. It is very hard to prevent the DDoS attack. Therefore, an intrusion detection system on large network is need to efficient real-time detection. In this paper, we propose the detection mechanism using analysis of flow information against DDoS attacks in order to guarantee the transmission of normal traffic and prevent the flood of abnormal traffic. The OPNET simulation results show that our ideas can provide enough services in DDoS attack. Key Words : DDoS Attack Detection, Quality-of-Service, Flow Information * 정회원, 경북대학교 컴퓨터학부접수일자 : 2014년 1월 8일, 수정완료 : 2014년 1월 29일 게재확정일자: 2014년 2월 7일Received: 8 January, 2014 / Revised: 29 January, 2014Accepted: 7 February, 2014