IGED: Towards Intelligent DDoS Detection Model Using Improved Generalized Entropy and DNN

被引：0

作者：

Liu, Yanhua ^{[1
,2
,3
]}

Han, Yuting ^{[1
,2
,3
]}

Chen, Hui ^{[1
,2
,3
]}

Zhao, Baokang ^{[4
]}

Wang, Xiaofeng ^{[4
]}

Liu, Ximeng ^{[1
,2
,3
]}

机构：

[1] Fuzhou Univ, Coll Comp & Data Sci, Fuzhou 350108, Peoples R China

[2] Minist Educ, Engn Res Ctr Big Data Intelligence, Fuzhou 350108, Peoples R China

[3] Fuzhou Univ, Fujian Key Lab Network Comp & Intelligent Informat, Fuzhou 350108, Peoples R China

[4] Natl Univ Def Technol, Coll Comp, Changsha 410073, Peoples R China

来源：

CMC-COMPUTERS MATERIALS & CONTINUA | 2024年 / 80卷 / 02期

基金：

中国国家自然科学基金;

关键词：

DDoS; real-time; improved generalized entropy; DNN;

D O I：

10.32604/cmc.2024.051194

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

As the scale of the networks continually expands, the detection of distributed denial of service (DDoS) attacks has become increasingly vital. We propose an intelligent detection model named IGED by using improved generalized entropy and deep neural network (DNN). The initial detection is based on improved generalized entropy to filter out as much normal traffic as possible, thereby reducing data volume. Then the fine detection is based on DNN to perform precise DDoS detection on the filtered suspicious traffic, enhancing the neural network's generalization capabilities. Experimental results show that the proposed method can efficiently distinguish normal traffic from DDoS traffic. Compared with the benchmark methods, our method reaches 99.9% on low-rate DDoS (LDDoS), flooded DDoS and CICDDoS2019 datasets in terms of both accuracy and efficiency in identifying attack flows while reducing the time by 17%, 31% and 8%.

引用

页码：1851 / 1866

页数：16

共 24 条

[1] Towards DDoS attack detection using deep learning approach [J].

Aktar, Sharmin ;

Nur, Abdullah Yasin .

COMPUTERS & SECURITY, 2023, 129

[2] Machine-Learning-Based DDoS Attack Detection Using Mutual Information and Random Forest Feature Importance Method [J].

Alduailij, Mona ;

Khan, Qazi Waqas ;

Tahir, Muhammad ;

Sardaraz, Muhammad ;

Alduailij, Mai ;

Malik, Fazila .

SYMMETRY-BASEL, 2022, 14 (06)

[3]

Alfatemi A, 2024, Arxiv, DOI arXiv:2401.03116

[4]

Alsumaidaie MSI, 2023, Iraqi J Electr Electron Eng., V20, P16, DOI [10.37917/ijeee.20.1.2, DOI 10.37917/IJEEE.20.1.2]

[5] A Comprehensive Analysis of Machine Learning- and Deep Learning-Based Solutions for DDoS Attack Detection in SDN [J].

Aslam, Naziya ;

Srivastava, Shashank ;

Gore, M. M. .

ARABIAN JOURNAL FOR SCIENCE AND ENGINEERING, 2023, 49 (03) :3897-3914

[6] Machine Learning Optimization Techniques: A Survey, Classification, Challenges, and Future Research Issues [J].

Bian, Kewei ;

Priyadarshi, Rahul .

ARCHIVES OF COMPUTATIONAL METHODS IN ENGINEERING, 2024, 31 (07) :4209-4233

[7] The use of statistical features for low-rate denial-of-service attack detection [J].

Fuladi, Ramin ;

Baykas, Tuncer ;

Anarim, Emin .

ANNALS OF TELECOMMUNICATIONS, 2024, 79 (9-10) :679-691

[8]

[江魁 Jiang Kui], 2021, [计算机工程与应用, Computer Engineering and Application], V57, P148

[9]

Jiangtao Pei, 2019, Journal of Physics: Conference Series, V1237, DOI 10.1088/1742-6596/1237/3/032040

[10] FMDADM: A Multi-Layer DDoS Attack Detection and Mitigation Framework Using Machine Learning for Stateful SDN-Based IoT Networks [J].

Khedr, Walid I. ;

Gouda, Ameer E. ;

Mohamed, Ehab R. .

IEEE ACCESS, 2023, 11 :28934-28954

← 1 2 3 →