DoS attacks prevention using IDS and data mining

Denial of Service (DoS) attacks pose a serious threat to business companies. DoS attacks is hard to defend because of many different ways that hacker may strike. DoS attacks focus on certain applications. DoS attack targets to make the service out of resources, so that it becomes unavailable to the legitimate users. Due to unpredictable behaviour of hacker it is difficult to distinguish between legitimate and malicious network traffic. Moreover, as defence against these improve, attacks also evolve. New kind of unknown attacks continue to strike and it is not easy to detect them based on information of pre-existing attacks. DOS attacks typically aim websites or services such as card payment gateways, banks, and even domain name servers. In this paper, we discuss about DOS attacks and briefly view the different prevention schemes. Then we discussed DoS prevention using firewall and IDS and different approaches to IDS using Data Mining techniques. We used NSL-KDD dataset, refined version of kdd'99 cup data set for applying Data Mining algorithms and testing.