Title page for ETD etd-07022009-001507


Type of Document Master's Thesis
Author Tao, Ran
Author's Email Address rtao2@tigers.lsu.edu
URN etd-07022009-001507
Title Sophisticated Denial-of-Service Attack Detections Through Integrated Architectural, OS, and Application Level Events Monitoring
Degree Master of Science in Electrical Engineering (M.S.E.E.)
Department Electrical & Computer Engineering
Advisory Committee
Advisor Name Title
Lu Peng Committee Chair
Alex Skavantzos Committee Member
Ramachandran Vaidyanathan Committee Member
Keywords
  • Feature Monitoring
  • Multi-Level
  • Host-based Intrusion Detection System
  • Denial-of-Service Attack
Date of Defense 2009-04-30
Availability unrestricted
Abstract
As the first step to defend against DoS attacks, Network-based Intrusion Detection System is well explored and widely used in both commercial tools and research works. Such IDS framework is built upon features extracted from the network traffic, which are application-level features, and is effective in detecting flooding-based DoS attacks. However, in a sophisticated DoS attack, where an attacker manages to bypass the network-based monitors and launch a DoS attack locally, sniffer-based methods have difficulty in differentiating attacks with normal behaviors, since the malicious connection itself behaves in the same manner of normal connections. In this work, we study a Host-based IDS framework which integrates features from architectural and operating system (OS) levels to improve performance of sophisticated DoS intrusion detection. Network traffic collected from a campus network, and real-world exploits are used to provide a realistic evaluation.
Files
  Filename       Size       Approximate Download Time (Hours:Minutes:Seconds) 
 
 28.8 Modem   56K Modem   ISDN (64 Kb)   ISDN (128 Kb)   Higher-speed Access 
  thesis_rt_final.pdf 482.12 Kb 00:02:13 00:01:08 00:01:00 00:00:30 00:00:02

Browse All Available ETDs by ( Author | Department )

If you have questions or technical problems, please Contact LSU-ETD Support.