liu.seSearch for publications in DiVA
Change search
ReferencesLink to record
Permanent link

Direct link
Detecting a Distributed Denial-of-Service Attack Using Speed Test Data: A Case Study on an Attack with Nationwide Impact
Linköping University, Department of Computer and Information Science. Linköping University, Faculty of Science & Engineering.
Linköping University, Department of Computer and Information Science. Linköping University, Faculty of Science & Engineering.
2015 (English)Independent thesis Basic level (degree of Bachelor), 10,5 credits / 16 HE creditsStudent thesis
Abstract [en]

This thesis presents a case study that investigates a large Distributed Denial of Service (DDoS) attack and how it affected speed tests observed by the crowd-based speed test application Bredbandskollen.  Furthermore, the thesis also investigates the possibility of using crowd-based speed tests as a method to detect a DDoS attack. This method has very low overhead which makes it an interesting complement to other methods. This thesis also shows that there was a significant deviation in the number of measurements during the DDoS attack considered in the case study compared to the year average. Furthermore, the measurements of the peak day of the attack had a higher average download speed than the year average. Whereas the higher download speed observation at first may appear non-intuitive, we briefly discuss potential explanations and how such positive anomalies could potentially be used to detect attacks. Detecting DDoS attacks early can lead to earlier recognition of network problems which can aid Internet Service Providers (ISPs) in maintaining the availability of their networks.

Place, publisher, year, edition, pages
2015. , 35 p.
Keyword [en]
DDoS, Threshold, Speedtest
National Category
Computer Science
URN: urn:nbn:se:liu:diva-120611ISRN: LIU-IDA/LITH-EX-G--15/062--SEOAI: diva2:846939
Subject / course
Information Technology
2015-06-03, Linköping, 14:35 (Swedish)
Available from: 2015-08-20 Created: 2015-08-18 Last updated: 2015-08-20Bibliographically approved

Open Access in DiVA

fulltext(1908 kB)226 downloads
File information
File name FULLTEXT01.pdfFile size 1908 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Andersson, KarlOdlander, Marcus
By organisation
Department of Computer and Information ScienceFaculty of Science & Engineering
Computer Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 226 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 720 hits
ReferencesLink to record
Permanent link

Direct link