{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2019:QXUBQSC6473USYIGLPMIRGI2NY","short_pith_number":"pith:QXUBQSC6","canonical_record":{"source":{"id":"1904.01508","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.NI","submitted_at":"2019-03-12T16:56:17Z","cross_cats_sorted":["cs.LG","stat.ML"],"title_canon_sha256":"266df2dddb84b82ea378d22e6328d95db80ee413579780c526c8415190d136a4","abstract_canon_sha256":"4c115e6f0d9c5f79790997b689527c66e9bbd284115d6e75f26fae2bada435c1"},"schema_version":"1.0"},"canonical_sha256":"85e818485ee7f74961065bd888991a6e2048eb5ef9d2882dddc34f5e30853811","source":{"kind":"arxiv","id":"1904.01508","version":1},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1904.01508","created_at":"2026-05-17T23:49:34Z"},{"alias_kind":"arxiv_version","alias_value":"1904.01508v1","created_at":"2026-05-17T23:49:34Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1904.01508","created_at":"2026-05-17T23:49:34Z"},{"alias_kind":"pith_short_12","alias_value":"QXUBQSC6473U","created_at":"2026-05-18T12:33:27Z"},{"alias_kind":"pith_short_16","alias_value":"QXUBQSC6473USYIG","created_at":"2026-05-18T12:33:27Z"},{"alias_kind":"pith_short_8","alias_value":"QXUBQSC6","created_at":"2026-05-18T12:33:27Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2019:QXUBQSC6473USYIGLPMIRGI2NY","target":"record","payload":{"canonical_record":{"source":{"id":"1904.01508","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.NI","submitted_at":"2019-03-12T16:56:17Z","cross_cats_sorted":["cs.LG","stat.ML"],"title_canon_sha256":"266df2dddb84b82ea378d22e6328d95db80ee413579780c526c8415190d136a4","abstract_canon_sha256":"4c115e6f0d9c5f79790997b689527c66e9bbd284115d6e75f26fae2bada435c1"},"schema_version":"1.0"},"canonical_sha256":"85e818485ee7f74961065bd888991a6e2048eb5ef9d2882dddc34f5e30853811","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-17T23:49:34.463806Z","signature_b64":"VosaPdrA5fmq6w17uBNzCX2ARNYSdctnIDarrT9bRG1S1qAfIZr4ZaZ76zUem/tVC6Rr13AAWUW8na2ED/xJCQ==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"85e818485ee7f74961065bd888991a6e2048eb5ef9d2882dddc34f5e30853811","last_reissued_at":"2026-05-17T23:49:34.463175Z","signature_status":"signed_v1","first_computed_at":"2026-05-17T23:49:34.463175Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1904.01508","source_version":1,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-17T23:49:34Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"u7avN4Pv6OYtswgqzL3k3UHvBSp0IWx22VVutEx7Hta4Rhv2/LwaJGi2pv1g3SaDiMTpzfqURZ85iFplqGRdAA==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-26T11:18:47.700273Z"},"content_sha256":"d539f83f800ee0d6c209b21b41571c226269f57b4f06fd745ca62c0f2d5b8677","schema_version":"1.0","event_id":"sha256:d539f83f800ee0d6c209b21b41571c226269f57b4f06fd745ca62c0f2d5b8677"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2019:QXUBQSC6473USYIGLPMIRGI2NY","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"Detection of LDDoS Attacks Based on TCP Connection Parameters","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.LG","stat.ML"],"primary_cat":"cs.NI","authors_text":"Bogdan Ghita, Michael Siracusano, Stavros Shiaeles","submitted_at":"2019-03-12T16:56:17Z","abstract_excerpt":"Low-rate application layer distributed denial of service (LDDoS) attacks are both powerful and stealthy. They force vulnerable webservers to open all available connections to the adversary, denying resources to real users. Mitigation advice focuses on solutions that potentially degrade quality of service for legitimate connections. Furthermore, without accurate detection mechanisms, distributed attacks can bypass these defences. A methodology for detection of LDDoS attacks, based on characteristics of malicious TCP flows, is proposed within this paper. Research will be conducted using combinat"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1904.01508","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-17T23:49:34Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"Bj/DNPb9Vpx6p2LxsFLMFUs4p0wZ/KQt1/4Ube3met/QhNXeBpMd9AXn81LgIThdsQK0FzlHIu1wVfwMsqylBA==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-26T11:18:47.700645Z"},"content_sha256":"4d64d6167bc0e545d0357c31a05a65561574abfe3a4bd8b423bce41cbf00aa0d","schema_version":"1.0","event_id":"sha256:4d64d6167bc0e545d0357c31a05a65561574abfe3a4bd8b423bce41cbf00aa0d"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/QXUBQSC6473USYIGLPMIRGI2NY/bundle.json","state_url":"https://pith.science/pith/QXUBQSC6473USYIGLPMIRGI2NY/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/QXUBQSC6473USYIGLPMIRGI2NY/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-06-26T11:18:47Z","links":{"resolver":"https://pith.science/pith/QXUBQSC6473USYIGLPMIRGI2NY","bundle":"https://pith.science/pith/QXUBQSC6473USYIGLPMIRGI2NY/bundle.json","state":"https://pith.science/pith/QXUBQSC6473USYIGLPMIRGI2NY/state.json","well_known_bundle":"https://pith.science/.well-known/pith/QXUBQSC6473USYIGLPMIRGI2NY/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2019:QXUBQSC6473USYIGLPMIRGI2NY","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"4c115e6f0d9c5f79790997b689527c66e9bbd284115d6e75f26fae2bada435c1","cross_cats_sorted":["cs.LG","stat.ML"],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.NI","submitted_at":"2019-03-12T16:56:17Z","title_canon_sha256":"266df2dddb84b82ea378d22e6328d95db80ee413579780c526c8415190d136a4"},"schema_version":"1.0","source":{"id":"1904.01508","kind":"arxiv","version":1}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1904.01508","created_at":"2026-05-17T23:49:34Z"},{"alias_kind":"arxiv_version","alias_value":"1904.01508v1","created_at":"2026-05-17T23:49:34Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1904.01508","created_at":"2026-05-17T23:49:34Z"},{"alias_kind":"pith_short_12","alias_value":"QXUBQSC6473U","created_at":"2026-05-18T12:33:27Z"},{"alias_kind":"pith_short_16","alias_value":"QXUBQSC6473USYIG","created_at":"2026-05-18T12:33:27Z"},{"alias_kind":"pith_short_8","alias_value":"QXUBQSC6","created_at":"2026-05-18T12:33:27Z"}],"graph_snapshots":[{"event_id":"sha256:4d64d6167bc0e545d0357c31a05a65561574abfe3a4bd8b423bce41cbf00aa0d","target":"graph","created_at":"2026-05-17T23:49:34Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"Low-rate application layer distributed denial of service (LDDoS) attacks are both powerful and stealthy. They force vulnerable webservers to open all available connections to the adversary, denying resources to real users. Mitigation advice focuses on solutions that potentially degrade quality of service for legitimate connections. Furthermore, without accurate detection mechanisms, distributed attacks can bypass these defences. A methodology for detection of LDDoS attacks, based on characteristics of malicious TCP flows, is proposed within this paper. Research will be conducted using combinat","authors_text":"Bogdan Ghita, Michael Siracusano, Stavros Shiaeles","cross_cats":["cs.LG","stat.ML"],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.NI","submitted_at":"2019-03-12T16:56:17Z","title":"Detection of LDDoS Attacks Based on TCP Connection Parameters"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1904.01508","kind":"arxiv","version":1},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:d539f83f800ee0d6c209b21b41571c226269f57b4f06fd745ca62c0f2d5b8677","target":"record","created_at":"2026-05-17T23:49:34Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"4c115e6f0d9c5f79790997b689527c66e9bbd284115d6e75f26fae2bada435c1","cross_cats_sorted":["cs.LG","stat.ML"],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.NI","submitted_at":"2019-03-12T16:56:17Z","title_canon_sha256":"266df2dddb84b82ea378d22e6328d95db80ee413579780c526c8415190d136a4"},"schema_version":"1.0","source":{"id":"1904.01508","kind":"arxiv","version":1}},"canonical_sha256":"85e818485ee7f74961065bd888991a6e2048eb5ef9d2882dddc34f5e30853811","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"85e818485ee7f74961065bd888991a6e2048eb5ef9d2882dddc34f5e30853811","first_computed_at":"2026-05-17T23:49:34.463175Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-17T23:49:34.463175Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"VosaPdrA5fmq6w17uBNzCX2ARNYSdctnIDarrT9bRG1S1qAfIZr4ZaZ76zUem/tVC6Rr13AAWUW8na2ED/xJCQ==","signature_status":"signed_v1","signed_at":"2026-05-17T23:49:34.463806Z","signed_message":"canonical_sha256_bytes"},"source_id":"1904.01508","source_kind":"arxiv","source_version":1}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:d539f83f800ee0d6c209b21b41571c226269f57b4f06fd745ca62c0f2d5b8677","sha256:4d64d6167bc0e545d0357c31a05a65561574abfe3a4bd8b423bce41cbf00aa0d"],"state_sha256":"9733412112947f4f08e1bb43155e6f63a4f897c8deeba6b1331a00fa2b1e64d8"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"LUmbJtIdLu07Cv1m0HYbvzUyslLfLuwFLz88uQJn9KGJDMr959BXRY2A9kR60LyYM/M23XK795tBxYsOyt6JDg==","signed_message":"bundle_sha256_bytes","signed_at":"2026-06-26T11:18:47.702596Z","bundle_sha256":"801a9fe9216c63d594cd3215a680a853a68b38a8de254b5d48d3b1924ec54b33"}}