Application layer distributed denial of service (App-layer DDoS) attacks are becoming a severe threat to the security of web servers. In this paper, we model user browsing activity in order to detect abnormal requests. User access patterns are analyzed to detect anomaly at the session level. The likelihood of a browsing session is then calculated to distinguish abnormal behaviors from normal ones. We evaluate our methods based on a real dataset collected from a commercial website that suffered from actual DDoS attacks. The experimental results validate the effectiveness of the proposed methods.
CITATION STYLE
Miu, T. N., Wang, C., Luo, D. X., & Wang, J. (2017). Modeling user browsing activity for application layer DDoS attack detection. In Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST (Vol. 198 LNICST, pp. 747–750). Springer Verlag. https://doi.org/10.1007/978-3-319-59608-2_42
Mendeley helps you to discover research relevant for your work.