Low rate multi-vector ddos attack detection using information gain based feature selection

被引：1

作者：

Robinson R.R.R. ^{[1
]}

Thomas C. ^{[2
]}

机构：

[1] SCT College of Engineering, Thiruvananthapuram

[2] Directorate of Technical Education, Thiruvananthapuram, Kerala

来源：

Lecture Notes on Data Engineering and Communications Technologies | 2021年 / 66卷

关键词：

Feature selection; Information gain; Low rate attacks; Machine learning; Network security; Stealthy attacks;

D O I：

10.1007/978-981-16-0965-7_53

中图分类号：

学科分类号：

摘要：

The number of connected devices is exponentially growing in the world today and they need to work without having any interruption. This scenario is very challenging to cybersecurity and needs proper attention of network administrators, service providers, and users. Implementing security frameworks in this scenario is very difficult because attackers are using very sophisticated easy to operate weapons to launch huge attacks such as Distributed Denial of Service. Intelligently detecting and mitigating the attacks in the network requires the use of machine learning algorithms. This work proposes a strategic way involving feature selection based machine learning for the detection of stealthy attacks. The detection system works by performing ınformation gain-based feature selection as a preprocessing step. This ensures case-based preprocessing of each attack vector present in the traffic and is proved to be effective empirically. The proposed method has been tested using two supervised machine learning classification algorithms, namely Random forest and J48. The evaluation results show that the Random forest algorithm gives a satisfactory True Positive rate of 99.6% in detecting stealthy layer 7 attacks. The overall accu-racy obtained is 99.81%. This approach causes the algorithms to exhibit improved performance while doing classification. © The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd. 2021.

引用

页码：685 / 696

页数：11

共 22 条

[1] Distributed Denial of Service Attack Threat Report by Netscout
[2] Report on Modern Ddos Attacks
[3] Jain A., Zongker D., Feature selection: Evaluation, application, and small sample performance, IEEE Trans Pattern Anal Mach Intell, 19, 2, pp. 153-158, (1997)
[4] Chuang L.-Y., Yang C.-H., Wu K.-C., Yang C.-H., A hybrid feature selection method for DNA micro-array data, Comput Biol Med, 41, 4, pp. 228-237, (2011)
[5] Gunal S., Hybrid feature selection for text classification, Turkish J Electr Eng Comput Sci, 20, 2, pp. 1296-1311, (2012)
[6] Wang C., Yao H., Liu Z., An efficient DDoS detection based on Su-genetic feature selection, Cluster Comput, 22, 1, pp. 2505-2515, (2019)
[7] Singh N.A., Singh K.J., De T., Distributed denial of service attack detection using Naive Bayes classifier through info gain feature selection, Proceedings of the International Conference on Informatics and Analytics, pp. 1-9, (2016)
[8] Osanaiye O., Cai H., Choo K.-K., Dehghantanha A., Xu Z., Dlodlo M., Ensemble-based multi-filter feature selection method for DDoS detection in cloud computing, EURASIP J Wirel Commun Netw, 2016, 1, (2016)
[9] Kamarudin M.H., Maple C., Watson T., Hybrid feature selection technique for intrusion detection system, Int J High Perform Comput Netw, 13, 2, pp. 232-240, (2019)
[10] Lima Filho F.S.D., Silveira F.A., de Medeiros Brito A., Vargas Solar G., Silveira L.F., Smart Detection: An Online Approach for Dos/Ddos Attack Detection Using Machine Learning, (2019)

← 1 2 3 →