MODIFICATION OF TCP SYN FLOOD (DOS) ATTACK DETECTION ALGORITHM

Article Sidebar

Open full text

PDF
Published: Sep 26, 2014
DOI: https://doi.org/10.5604/20830157.1121390
Crossref
Scopus
Google Scholar
Europe PMC

Main Article Content

DOI

https://doi.org/10.5604/20830157.1121390

Authors

Tomáš Halagan

tomas.halagan@stuba.sk

Slovak University of Technology in Bratislava
Tomáš Kováčik

tomas.kovacik@stuba.sk

Slovak University of Technology in Bratislava

Abstract

This work focuses onto proposal and implementation of modification of SYN flood (DoS) attack detection algorithm. Based on Counting Bloom filter, the attack detection algorithm is proposed and implemented into KaTaLyzer network traffic monitoring tool. TCP attacks can be detected and network administrator can be notified in real-time about ongoing attack by using different notification methods.

Keywords:

DoS, TCP, SYN, flood attack, network security, notification messages, detection module

References

Article Details

Halagan, T., & Kováčik, T. (2014). MODIFICATION OF TCP SYN FLOOD (DOS) ATTACK DETECTION ALGORITHM. Informatyka, Automatyka, Pomiary W Gospodarce I Ochronie Środowiska, 4(3), 75–76. https://doi.org/10.5604/20830157.1121390