Distributed intrusion detection system for TCP flood attack

Abstract

Nowadays, there is an increase in the number of users to use different web services for various activities such as online shopping and online payment transactions. Currently, most of these web servers are suffering from distributed denial-of-service (DDoS) attacks, which results in unavailability of services to valid users. Intrusion detection system (IDS) is one of the best solutions adopted by various organizations for these types of attack detection. This paper proposes the distributed intrusion detection mechanism (DIDM) for efficient DDoS attacks. The proposed intrusion detection takes place with the help of server IDS and client IDS placed on a central server and individual clients, respectively. This type of mechanism extends the scalability and overcomes the limitation of central server failure in a distributed environment.