Skip to main content
SpringerLink
Log in

A Distributed Detecting Method for SYN Flood Attacks and Its Implementation Using Mobile Agents

  • Conference paper
Multiagent System Technologies (MATES 2009)

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 5774))

Included in the following conference series:

Abstract

In recent years, damage caused by DoS attacks is real and causing substantive problems. Such threat is widespread from major commercial sites to individual users. Therefore, it is important for network administrators to develop means to comprehend the latest trend of DoS attacks. In this paper, we propose a distributed detecting method for SYN Flood attack which exploits a flow in TCP itself. Our proposed system employs mobile agents to detect SYN Flood attack. We also show the effectiveness of our proposal through experiment of detection of SYN Flood attack in virtual network of simulation environment.

This work was supported by Grant-in-Aid for Young Scientists (B) (21700084).

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. SECURITY.nl: http://www.security.nl/article/12088/1/Zombienetwerk_bestond_uit_1.5_milijoen_gehackte_computers.html

  2. GovCert.nl (Dutch Computer Emergency Response Team): http://www.govcert.nl .

  3. Moore, D., Shannon, C., Brown, D.J., Voelker, G.M., Savage, S.: Inferring internet denial-of-service activity. ACM Transactions on Computer Systems (TOCS) 24(2), 115–139 (2006)

    Article  Google Scholar 

  4. Stacheldraht: http://staff.washington.edu/dittrich/misc/stacheldraht.analysis

  5. Synk4: http://www.hoobie.net/security/exploits/hacking/synk4.c

  6. Kompella, R.R., Singh, S., Varghese, G.: On scalable attack detection in the network. IEEE/ACM Transactions on Networking 15(1), 14–25 (2007)

    Article  Google Scholar 

  7. Wang, H., Zhang, D., Shin, K.G.: Change-point monitoring for the detection of dos attacks. IEEE Transactions on Dependable and Secure Computing 1(4), 193–208 (2004)

    Article  Google Scholar 

  8. DShield: http://www.dshield.org

  9. @Police: http://www.cyberpolice.go.jp

  10. @Police: The system of monitoring syn flood attacks, http://www.cyberpolice.go.jp/server/rd_env/pdf/synflood_detect.pdf

  11. Shinoda, Y., Ikai, K., Itoh, M.: Vulnerabilities of passive internet threat monitors. In: 14th USENIX Security Symposium (SEC 2005), pp. 209–224 (2005)

    Google Scholar 

  12. Katoh, T., Kuzuno, H., Kawahara, T., Watanabe, A., Nakai, Y., Bista, B.B., Takata, T.: A wide area log analyzing system based on mobile agents. In: Computational Intelligence for Modelling, Control and Automation, 2006 and International Conference on Intelligent Agents, Web Technologies and Internet Commerce., November 2006, 7 pages (2006)

    Google Scholar 

  13. ABLA Project, http://sourceforge.jp/projects/abla

  14. Yet Another Network Simulator, http://yans.inria.fr

Download references

Author information

Authors and Affiliations

  1. Iwate Prefectural University, Iwate, Japan

    Masaki Narita, Takashi Katoh, Bhed Bahadur Bista & Toyoo Takata

Authors
  1. Masaki Narita
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Takashi Katoh
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Bhed Bahadur Bista
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Toyoo Takata
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Distributed Systems and Information Systems, Computer Science Department, University of Hamburg, Hamburg, Germany

    Lars Braubach

  2. University of Liverpool, United Kingdom

    Wiebe van der Hoek

  3. Austrian Research Institute for Artificial Intelligence (OFAI), Freyung 6/6, A-1010, Vienna, Austria

    Paolo Petta

  4. Distributed Systems and Information Systems, University of Hamburg, Hamburg, Germany

    Alexander Pokahr

Rights and permissions

Reprints and permissions

Copyright information

© 2009 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Narita, M., Katoh, T., Bista, B.B., Takata, T. (2009). A Distributed Detecting Method for SYN Flood Attacks and Its Implementation Using Mobile Agents. In: Braubach, L., van der Hoek, W., Petta, P., Pokahr, A. (eds) Multiagent System Technologies. MATES 2009. Lecture Notes in Computer Science(), vol 5774. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-04143-3_9

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-04143-3_9

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-04142-6

  • Online ISBN: 978-3-642-04143-3

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation