The Infona portal uses cookies, i.e. strings of text saved by a browser on the user's device. The portal can access those files and use them to remember the user's data, such as their chosen settings (screen view, interface language, etc.), or their login data. By using the Infona portal the user accepts automatic saving and using this information for portal operation purposes. More information on the subject can be found in the Privacy Policy and Terms of Service. By closing this window the user confirms that they have read the information on cookie usage, and they accept the privacy policy and the way cookies are used by the portal. You can change the cookie settings in your browser.
Anomaly based DDoS detection involves deviation from thresholds set in normal condition. This deviation can be used for estimating number of attackers. We use ns-2 as simulation test bed for launching DDoS attacks using well known DDoS attack tools with varied number of attackers. A new relationship is established between estimated number of attackers and drift from normal value using Regression. Error in relationship is graphically depicted by highlighting number of false positives/negatives. An Internet type topology is used to test our scheme.