LDoS attack detection method based on EMDR-WE algorithm
The invention discloses an LDoS attack detection method based on an EMDR-WE algorithm, and belongs to the field of computer network security. The method comprises the following steps: in view of the characteristic of high complexity of a TCP flow sequence under the LDoS attack, quantifying the TCP f...
Saved in:
Main Authors | , , , , , |
---|---|
Format | Patent |
Language | Chinese English |
Published |
18.02.2022
|
Subjects | |
Online Access | Get full text |
Cover
Loading…
Summary: | The invention discloses an LDoS attack detection method based on an EMDR-WE algorithm, and belongs to the field of computer network security. The method comprises the following steps: in view of the characteristic of high complexity of a TCP flow sequence under the LDoS attack, quantifying the TCP flow sequence complexity of an attack window and a normal window by combining four characteristic entropies, namely approximate entropy, sample entropy, fuzzy entropy and permutation entropy; constructing a preprocessing model for empirical mode decomposition and reconstruction of a TCP flow sequence, filtering noise components of the TCP flow sequence through the model, obtaining a sliding window sequence of TCP flow, and extracting four feature entropies of each window; giving a higher weight to the feature entropy with the large information contribution degree by using an entropy weight method to obtain a comprehensive score of the complexity of each TCP flow window. comparing with a threshold value obtained by l |
---|---|
Bibliography: | Application Number: CN202111332817 |