ALL COVERED TOPICS

NoSQL Benchmarks NoSQL use cases NoSQL Videos NoSQL Hybrid Solutions NoSQL Presentations Big Data Hadoop MapReduce Pig Hive Flume Oozie Sqoop HDFS ZooKeeper Cascading Cascalog BigTable Cassandra HBase Hypertable Couchbase CouchDB MongoDB OrientDB RavenDB Jackrabbit Terrastore Amazon DynamoDB Redis Riak Project Voldemort Tokyo Cabinet Kyoto Cabinet memcached Amazon SimpleDB Datomic MemcacheDB M/DB GT.M Amazon Dynamo Dynomite Mnesia Yahoo! PNUTS/Sherpa Neo4j InfoGrid Sones GraphDB InfiniteGraph AllegroGraph MarkLogic Clustrix CouchDB Case Studies MongoDB Case Studies NoSQL at Adobe NoSQL at Facebook NoSQL at Twitter

NAVIGATE MAIN CATEGORIES

Close

MapReduce-based DDoS Detection Algorithms With Hadoop

A summary of the two algorithms for DDoS detection proposed by Yeonhee Lee and Yeonhee Lee in the paper Detecting DDoS Attacks with Hadoop:

  • Counter based method: this method relies on three key parameters: time interval which is the duration during which packets are to be analyzed, threshold which indicates frequency of requests and unbalance ratio which denotes the anomaly ratio of response per page requested between specific client and server.
  • Access pattern based method: this method requires more than two MapReduce jobs:
  • the first job obtains access sequence to the web page between a client and a web server and calculates the spending time and the bytes count for each request of the URL;
  • the second job hunts out infected hosts by comparing the access sequence and the spending time among clients trying to access the same server.

Original title and link: MapReduce-based DDoS Detection Algorithms With Hadoop (NoSQL database©myNoSQL)

via: http://www.hadoopsphere.com/2012/07/detecting-ddos-hacking-attempt-with.html