Skip to main content
Article thumbnail
Location of Repository

Research on the Active DDoS Filtering Algorithm Based on IP Flow

By Rui GUO, Hao YIN, Dongqi WANG and Bencheng ZHANG


Distributed Denial-of-Service (DDoS) attacks against public web servers are increasingly common. Countering DDoS attacks are becoming ever more challenging with the vast resources and techniques increasingly available to attackers. It is impossible for the victim servers to work on the individual level of on-going traffic flows. In this paper, we establish IP Flow which is used to select proper features for DDoS detection. The IP flow statistics is used to allocate the weights for traffic routing by routers. Our system protects servers from DDoS attacks without strong client authentication or allowing an attacker with partial connectivity information to repeatedly disrupt communications. The new algorithm is thus proposed to get efficiently maximum throughput by the traffic filtering, and its feasibility and validity have been verified in a real network circumstance. The experiment shows that it is with high average detection and with low false alarm and miss alarm. Moreover, it can optimize the network traffic simultaneously with defending against DDoS attacks, thus eliminating efficiently the global burst of traffic arising from normal traffic

Topics: DDoS Attack, Genetic Algorithm, IP Flow Statistics, LCC:Electronic computers. Computer science, LCC:QA75.5-76.95, LCC:Instruments and machines, LCC:QA71-90, LCC:Mathematics, LCC:QA1-939, LCC:Science, LCC:Q, DOAJ:Computer Science, DOAJ:Technology and Engineering
Publisher: Scientific Research Publishing
Year: 2009
DOI identifier: 10.4236/ijcns.2009.27067
OAI identifier:
Download PDF:
Sorry, we are unable to provide the full text but you may find it at the following location(s):
  • (external link)
  • Suggested articles

    To submit an update or takedown request for this paper, please submit an Update/Correction/Removal Request.