Header menu link for other important links
X
An entropy based approach to detect and distinguish DDoS attacks from flash Crowds in VoIP Networks
, N.C. Sriman Narayana Iyengar
Published in
2012
Volume: 14
   
Issue: 5
Pages: 257 - 269
Abstract
Voice over IP (VoIP) is a facility of providing voice ser-vices in accordance with IP (Internet Protocol) which provides better QoS (Quality of Service) than Public Switched Telephone Network (PSTN) at comparatively less cost.. Since Internet su®ers from various threats, VoIP, which uses IP for servicing the Clients also results in stepping down QoS. One of the major QoS threats is Server Availability. Attackers defeat the server processing capability and gain control over the server by flooding lot of messages or requests and make server resources unavail-able to the genuine user, resulting in DDoS (Distributed Denial of Service). But the server must predict the le-gitimate flood namely Flash crowd and malicious attack flooding usually DDoS. Both DDoS and Flash crowd cre-ates abnormal tra±c condition, but in order to improve Goodput, the server must be deployed with the mech-anism that should classify legitimate and malicious call requests. This paper observes the tra±c condition and the purpose of dealings varies which helps in outwitting the attackers. We also use the entropy packet analysis to minimize the tra±c reaching the server. NS2 (Network Simulator 2) with SIP (Session Initiation Protocol) is ued to experiment and analyze the proposed work.
About the journal
JournalInternational Journal of Network Security
ISSN1816353X