Quantifying the effect of incomplete information in denial of service detection

Lorgat, MWBaghai-Wadji, AMcDonald, Andre M2019-03-272019-03-272017-10Lorgat, M.W., Baghai-Wadji, A. and McDonald, A.M. 2017. Quantifying the effect of incomplete information in denial of service detection. Proceedings of the 2017 Global Wireless Summit, 15 - 18 October 2017, Cape Town, South Africahttp://gwsummit2017.org/images/GWS_Program2.pdfhttp://hdl.handle.net/10204/10863Due to copyright restrictions, the attached pdf is the accepted version only. For access to the published version, kindly consult the publisher's website.The performance loss due to incomplete information in denial of service (DoS) detection is quantified in this paper. Volumetric DoS detection is formulated as a signal detection problem. Two detectors are defined: the first operates without knowledge of the attack model and the second operates as if the attack model were known. The performance loss is quantified by comparing the two detectors. Simulation results demonstrate that the performance loss is greatest for low intensity attacks and slowly diminishes as the attack intensity increases.enDenial of ServiceDoSSignal detection problemsIntrusion detectionAnomaly detectionQuantifying the effect of incomplete information in denial of service detectionConference PresentationLorgat, M., Baghai-Wadji, A., & McDonald, A. M. (2017). Quantifying the effect of incomplete information in denial of service detection. IEEE. http://hdl.handle.net/10204/10863Lorgat, MW, A Baghai-Wadji, and Andre M McDonald. "Quantifying the effect of incomplete information in denial of service detection." (2017): http://hdl.handle.net/10204/10863Lorgat M, Baghai-Wadji A, McDonald AM, Quantifying the effect of incomplete information in denial of service detection; IEEE; 2017. http://hdl.handle.net/10204/10863 .TY - Conference Presentation AU - Lorgat, MW AU - Baghai-Wadji, A AU - McDonald, Andre M AB - The performance loss due to incomplete information in denial of service (DoS) detection is quantified in this paper. Volumetric DoS detection is formulated as a signal detection problem. Two detectors are defined: the first operates without knowledge of the attack model and the second operates as if the attack model were known. The performance loss is quantified by comparing the two detectors. Simulation results demonstrate that the performance loss is greatest for low intensity attacks and slowly diminishes as the attack intensity increases. DA - 2017-10 DB - ResearchSpace DP - CSIR KW - Denial of Service KW - DoS KW - Signal detection problems KW - Intrusion detection KW - Anomaly detection LK - https://researchspace.csir.co.za PY - 2017 T1 - Quantifying the effect of incomplete information in denial of service detection TI - Quantifying the effect of incomplete information in denial of service detection UR - http://hdl.handle.net/10204/10863 ER -