[en] This paper proposes an effective approach to model DDoS attacks, and its application to recognize attack plans prior to the actual incident. The goals of this study are, firstly model DDoS attacks, their prerequisites and consequences using semantic representation in order to provide description logic of DDoS attacks; and secondly, propose an ontology-based solution which detects potential DDoS attacks using inference over observing knowledge provided by sensory inputs. Unlike other ontologies in network attack domains, proposed ontology is generated automatically using well-known taxonomies like CAPEC, CWE, and CVE datasets. Proposed method not only introduces semantic to exchange knowledge between machines, but also provides a framework by which machine can detect intrusions.
Disciplines :
Computer science
Author, co-author :
ANSARINIA, Morteza ; University of Luxembourg > Faculty of Humanities, Education and Social Sciences (FHSE) > Department of Behavioural and Cognitive Sciences (DBCS)
Asghari, Seyyed Amir
Souzani, Afshin
Ghaznavi, Ahmadreza
External co-authors :
yes
Language :
English
Title :
Ontology-based modeling of DDoS attacks for attack plan detection
Publication date :
2012
Event name :
6th International Symposium on Telecommunications (IST)
Event organizer :
IEEE
Event place :
Tehran, Iran
Event date :
2012
Audience :
International
Main work title :
6th International Symposium on Telecommunications (IST)
