TY - GEN
T1 - Detection and identification of neptune attacks and flash crowds
AU - The, Quyen Le
AU - Zhanikeev, Marat
AU - Tanaka, Yoshiaki
PY - 2007/12/1
Y1 - 2007/12/1
N2 - Neptune attack and Flash Crowd are two typical threats to web servers. These two anomalies have many identical features that make them difficult to distinguish. In this paper, we propose a statistical packet-based method to detect Neptune attacks and Flash Crowds and more importantly, by performing separate analysis by source address aggregation, we also propose additional efficient means to differentiate these two similar anomalies.
AB - Neptune attack and Flash Crowd are two typical threats to web servers. These two anomalies have many identical features that make them difficult to distinguish. In this paper, we propose a statistical packet-based method to detect Neptune attacks and Flash Crowds and more importantly, by performing separate analysis by source address aggregation, we also propose additional efficient means to differentiate these two similar anomalies.
UR - http://www.scopus.com/inward/record.url?scp=38149023388&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=38149023388&partnerID=8YFLogxK
M3 - Conference contribution
AN - SCOPUS:38149023388
SN - 9783540754756
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 571
EP - 574
BT - Managing Next Generation Networks and Services - 10th Asia-Pacific Network Operations and Management Symposium, APNOMS 2007, Proceedings
T2 - 10th Asia-Pacific Network Operations and Management Symposium, APNOMS 2007
Y2 - 10 October 2007 through 12 October 2007
ER -