Performance Evaluation of Multi-Stage Change-Point Detection Scheme against DDoS Attacks by Random Scan Worms

@inproceedings{Murase2008PerformanceEO,
  title={Performance Evaluation of Multi-Stage Change-Point Detection Scheme against DDoS Attacks by Random Scan Worms},
  author={Tutomu Murase and Yukinobu Fukushima and Masayoshi Kobayashi and Sakiko Nishimoto and Ryohei Fujimaki and Tokumi Yokohira},
  year={2008}
}
As a promising approach for large-scale simultaneous events (e.g., DDoS attacks by unknown worms), we have proposed a multi-stage change-point detection scheme. In the scheme, the global detector gathers information from distributed change-point detectors and detects simultaneous occurrence of change-points as target events. Because the scheme neglects sporadic false-positive change-points, which are caused by non-target events such as hardware troubles and normal traffic changes, the scheme… CONTINUE READING