LDoS attack detection method based on EMDR-WE algorithm

The invention discloses an LDoS attack detection method based on an EMDR-WE algorithm, and belongs to the field of computer network security. The method comprises the following steps: in view of the characteristic of high complexity of a TCP flow sequence under the LDoS attack, quantifying the TCP f...

Full description

Saved in:
Bibliographic Details
Main Authors ZHENG SIQIAO, LI XINMENG, YAO SUTING, WANG XIAOCAI, TANG DAN, LIU BORU
Format Patent
LanguageChinese
English
Published 18.02.2022
Subjects
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
HANDLING RECORD CARRIERS
PHYSICS
PRESENTATION OF DATA
RECOGNITION OF DATA
RECORD CARRIERS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online AccessGet full text

Cover

More Information
Summary:The invention discloses an LDoS attack detection method based on an EMDR-WE algorithm, and belongs to the field of computer network security. The method comprises the following steps: in view of the characteristic of high complexity of a TCP flow sequence under the LDoS attack, quantifying the TCP flow sequence complexity of an attack window and a normal window by combining four characteristic entropies, namely approximate entropy, sample entropy, fuzzy entropy and permutation entropy; constructing a preprocessing model for empirical mode decomposition and reconstruction of a TCP flow sequence, filtering noise components of the TCP flow sequence through the model, obtaining a sliding window sequence of TCP flow, and extracting four feature entropies of each window; giving a higher weight to the feature entropy with the large information contribution degree by using an entropy weight method to obtain a comprehensive score of the complexity of each TCP flow window. comparing with a threshold value obtained by l
Bibliography:Application Number: CN202111332817