An autonomic detection and protection system for denial of service attack

Abstract

This paper introduces a self-protection structure for computing system. The proposed structure aims to detect, classify and protect against DoS attacks. This architecture utilizes a model-based decision approach that continuously monitors for system parameters relevant to its security and quality of service. The proposed structure is implemented here on a distributed system comprising of a set of routers, front VMs and hosts on which online monitoring sensors, data preprocessing filters, intrusion detection systems, and model-based controllers are implemented. The functionality of the security management approach is evaluated through the experiment. The results show that this approach is successful in dealing with known and unknown DoS attacks automatically and efficiently.