DoS and DDoS attack detection using deep learning and IDS

In the recent years, Denial-of-Service (DoS) or Distributed Denial-of-Service (DDoS) attack has spread greatly and attackers make online systems unavailable to legitimate users by sending huge number of packets to the target system. In this paper, we proposed two methodologies to detect Distributed Reflection Denial of Service (DrDoS) attacks in IoT. The first methodology uses hybrid Intrusion Detection System (IDS) to detect IoT-DoS attack. The second methodology uses deep learning models, based on Long Short-Term Memory (LSTM) trained with latest dataset for such kinds of DrDoS. Our experimental results demonstrate that using the proposed methodologies can detect bad behaviour making the IoT network safe of Dos and DDoS attacks.

[1]  Ada Gavrilovska,et al.  Towards IoT-DDoS Prevention Using Edge Computing , 2018, HotEdge.

[2]  M. Ibrahim Salim,et al.  A study on IDS for preventing Denial of Service attack using outliers techniques , 2016, 2016 IEEE International Conference on Engineering and Technology (ICETECH).

[3]  Junhong Li,et al.  DETECTION OF DDOS ATTACKS BASED ON DENSE NEURAL NETWORKS, AUTOENCODERS AND PEARSON CORRELATION COEFFICIENT , 2020 .

[4]  Muhammad Aamir,et al.  DDoS attack detection with feature engineering and machine learning: the framework and performance evaluation , 2019, International Journal of Information Security.

[5]  Raghvendra Kumar,et al.  Performance evaluation of Botnet DDoS attack detection using machine learning , 2020, Evol. Intell..

[6]  Martin J. Reed,et al.  Denial of service detection through TCP congestion window analysis , 2013, World Congress on Internet Security (WorldCIS-2013).

[7]  François Chollet,et al.  Keras: The Python Deep Learning library , 2018 .

[8]  Anshu Gangwar A survey on anomaly and signature based intrusion detection system (IDS) , 2014 .

[9]  Longe Olumide Babatope,et al.  Strategic Sensor Placement for Intrusion Detection in Network-Based IDS , 2014 .

[10]  Ammar Rayes,et al.  Internet of Things Security and Privacy , 2017 .

[11]  Nick Feamster,et al.  Machine Learning DDoS Detection for Consumer Internet of Things Devices , 2018, 2018 IEEE Security and Privacy Workshops (SPW).

[12]  Ali A. Ghorbani,et al.  Developing Realistic Distributed Denial of Service (DDoS) Attack Dataset and Taxonomy , 2019, 2019 International Carnahan Conference on Security Technology (ICCST).

[13]  Karen A. Scarfone,et al.  Guide to Intrusion Detection and Prevention Systems (IDPS) , 2007 .

[14]  Samer Salam,et al.  Internet of Things From Hype to Reality , 2017 .

[15]  Mohammad M. Shurman,et al.  IoT Denial-of-Service Attack Detection and Prevention Using Hybrid IDS , 2019, 2019 International Arab Conference on Information Technology (ACIT).

[16]  Kuldip Singh,et al.  DDoS Incidents and their Impact: A Review , 2010, Int. Arab J. Inf. Technol..

[17]  E. Salahi Anomaly Intrusion Detection Design Using Hybrid of Unsupervised and Supervised Neural Network , 2009 .

[18]  Johnny Wong,et al.  A hybrid intrusion detection system , 2004 .

[19]  Naveen Bindra,et al.  Detecting DDoS Attacks Using Machine Learning Techniques and Contemporary Intrusion Detection Dataset , 2019, Automatic Control and Computer Sciences.

[20]  Gaël Varoquaux,et al.  Scikit-learn: Machine Learning in Python , 2011, J. Mach. Learn. Res..

[21]  Ioannis D. Moscholios,et al.  A Signature-based Intrusion Detection System for the Internet of Things , 2018 .

[22]  Rajkumar Buyya,et al.  Internet of Things: An Overview , 2017, ArXiv.

[23]  Mansour Sheikhan,et al.  Hybrid of anomaly-based and specification-based IDS for Internet of Things using unsupervised OPF based on MapReduce approach , 2017, Comput. Commun..

[24]  Shreya Dubey,et al.  KBB: A hybrid method for intrusion detection , 2015, 2015 International Conference on Computer, Communication and Control (IC4).