A Review on Hot-IP Finding Methods and Its Application in Early DDoS Target Detection
AbstractOn the high-speed connections of the Internet or computer networks, the IP (Internet Protocol) packet traffic passing through the network is extremely high, and that makes it difficult for network monitoring and attack detection applications. This paper reviews methods to find the high-occurrence-frequency elements in the data stream and applies the most efficient methods to find Hot-IPs that are high-frequency IP addresses of IP packets passing through the network. Fast finding of Hot-IPs in the IP packet stream can be effectively used in early detection of DDoS (Distributed Denial of Service) attack targets and spreading sources of network worms. Research results show that the Count-Min method gives the best overall performance for Hot-IP detection thanks to its low computational complexity, low space requirement and fast processing speed. We also propose an early detection model of DDoS attack targets based on Hot-IP finding, which can be deployed on the target network routers. View Full-Text
Share & Cite This Article
Hoang, X.D.; Pham, H.K. A Review on Hot-IP Finding Methods and Its Application in Early DDoS Target Detection. Future Internet 2016, 8, 52.
Hoang XD, Pham HK. A Review on Hot-IP Finding Methods and Its Application in Early DDoS Target Detection. Future Internet. 2016; 8(4):52.Chicago/Turabian Style
Hoang, Xuan D.; Pham, Hong K. 2016. "A Review on Hot-IP Finding Methods and Its Application in Early DDoS Target Detection." Future Internet 8, no. 4: 52.
Note that from the first issue of 2016, MDPI journals use article numbers instead of page numbers. See further details here.