A feature reduction based reflected and exploited DDoS attacks detection system

The hacker attempts distributed denial of service (DDoS) attacks towards network resources to disturb or deny services. The hacker degrades the quality of service to legitimate users by performing reflection and exploitation based DDoS attacks with a trusted third party server that hides information of the attacker. It is, therefore, necessary to propose an intelligent intrusion detection system to detect reflection and exploitation based DDoS attacks efficiently and effectively. The present study proposes a feature reduction method by the combination of information gain (IG) and correlation (CR) feature selection techniques. This study presents a DDoS attack detection framework to detect reflection and exploitation based DDoS attacks in an efficient manner. The framework is tested on the latest DDoS evaluation (CICDDoS2019) dataset with J48 classifier. The feature reduction method obtains minimum and maximum reduction by 56 and 82.92% respectively, of the original features. The experimentation results show that the proposed framework outperforms using a reduced features subset. The validation of the proposed framework on knowledge discovery and data mining (KDD Cup 1999) dataset provides improvement in performance for binary and multi-level classification using feature reduction by 60.97% of the original features. The proposed feature reduction method is also compared to the relevant existing feature selection methods used for intrusion detection on CICDoS 2019 and KDD Cup 1999 datasets.

[1]  Soodeh Hosseini,et al.  Anomaly process detection using negative selection algorithm and classification techniques , 2019, Evolving Systems.

[2]  Hüseyin Polat,et al.  Detecting DDoS Attacks in Software-Defined Networks Through Feature Selection Methods and Machine Learning Models , 2020, Sustainability.

[3]  Rajendra Patil,et al.  Protocol Specific Multi-Threaded Network Intrusion Detection System (PM-NIDS) for DoS/DDoS Attack Detection in Cloud , 2018, 2018 9th International Conference on Computing, Communication and Networking Technologies (ICCCNT).

[4]  Ali Dehghantanha,et al.  Ensemble-based multi-filter feature selection method for DDoS detection in cloud computing , 2016, EURASIP Journal on Wireless Communications and Networking.

[5]  R. Anitha,et al.  Evaluating Machine Learning Algorithms for Detecting DDoS Attacks , 2011 .

[6]  Nur Izura Udzir,et al.  Distributed Denial of Service detection using hybrid machine learning technique , 2014, 2014 International Symposium on Biometrics and Security Technologies (ISBAST).

[7]  Naveen Bindra,et al.  Detecting DDoS Attacks Using Machine Learning Techniques and Contemporary Intrusion Detection Dataset , 2019, Autom. Control. Comput. Sci..

[8]  Jisa David,et al.  Efficient DDoS flood attack detection using dynamic thresholding on flow-based network traffic , 2019, Comput. Secur..

[9]  Damai Jessica Prathyusha,et al.  A cognitive mechanism for mitigating DDoS attacks using the artificial immune system in a cloud environment , 2020, Evol. Intell..

[10]  Mohamed Amine Ferrag,et al.  Deep learning for cyber security intrusion detection: Approaches, datasets, and comparative study , 2020, J. Inf. Secur. Appl..

[11]  Marcin Wozniak,et al.  Recurrent Neural Network Model for IoT and Networking Malware Threat Detection , 2021, IEEE Transactions on Industrial Informatics.

[12]  Mahmood K. Ibrahem,et al.  Evaluation of DDoS attacks Detection in a New Intrusion Dataset Based on Classification Algorithms , 2019, Iraqi Journal of Information & Communications Technology.

[13]  Indraneel Sreeram,et al.  HTTP flood attack detection in application layer using machine learning metrics and bio inspired bat algorithm , 2019, Applied Computing and Informatics.

[14]  Soodeh Hosseini,et al.  The hybrid technique for DDoS detection with supervised learning algorithms , 2019, Comput. Networks.

[15]  Tülin Atmaca,et al.  Intrusion Detection with Comparative Analysis of Supervised Learning Techniques and Fisher Score Feature Selection Algorithm , 2018, ISCIS.

[16]  Kai Qian,et al.  A Neural-Network Based DDoS Detection System Using Hadoop and HBase , 2015, 2015 IEEE 17th International Conference on High Performance Computing and Communications, 2015 IEEE 7th International Symposium on Cyberspace Safety and Security, and 2015 IEEE 12th International Conference on Embedded Software and Systems.

[17]  Priyanka Verma,et al.  Distributed Denial-of-Service Attack Detection and Mitigation Using Feature Selection and Intensive Care Request Processing Unit , 2017, Arabian Journal for Science and Engineering.

[18]  Esraa Alomari,et al.  An Intelligent ICMPv6 DDoS Flooding-Attack Detection Framework (v6IIDS) using Back-Propagation Neural Network , 2016 .

[19]  Christos Douligeris,et al.  ForChaos: Real Time Application DDoS Detection Using Forecasting and Chaos Theory in Smart Home IoT Network , 2019, Wirel. Commun. Mob. Comput..

[20]  Dirk Müller,et al.  Data Center Control Strategy for Participation in Demand Response Programs , 2018, IEEE Transactions on Industrial Informatics.

[21]  Karim Afdel,et al.  Distributed Intrusion Detection System for Cloud Environments based on Data Mining techniques , 2018 .

[22]  Xinxin Niu,et al.  A Filter Feature Selection Algorithm Based on Mutual Information for Intrusion Detection , 2018, Applied Sciences.

[23]  Meng Wang,et al.  A dynamic MLP-based DDoS attack detection method using feature selection and feedback , 2020, Comput. Secur..

[24]  A. Kannammal,et al.  An integrated intelligent paradigm to detect DDoS attack in mobile ad hoc networks , 2015, Int. J. Embed. Syst..

[25]  Muhammad Aamir,et al.  Clustering based semi-supervised machine learning for DDoS attack classification , 2019, J. King Saud Univ. Comput. Inf. Sci..

[26]  Sachin Tripathi,et al.  An efficient feature selection based Bayesian and Rough set approach for intrusion detection , 2020, Appl. Soft Comput..

[27]  Rouhollah Rahmani,et al.  An anomaly-based framework for mitigating effects of DDoS attacks using a third party auditor in cloud computing environments , 2020, Cluster Computing.

[28]  Marcin Woźniak,et al.  Accurate and fast URL phishing detector: A convolutional neural network approach , 2020, Comput. Networks.

[29]  Ali A. Ghorbani,et al.  Developing Realistic Distributed Denial of Service (DDoS) Attack Dataset and Taxonomy , 2019, 2019 International Carnahan Conference on Security Technology (ICCST).

[30]  M. Mayuranathan,et al.  RETRACTED ARTICLE: Best features based intrusion detection system by RBM model for detecting DDoS in cloud environment , 2019, Journal of Ambient Intelligence and Humanized Computing.

[31]  Binod Kumar Kanaujia,et al.  Theoretical Analysis and Design of High-Stable-Gain Antenna with Ultrawide Band Capabilities and Suppressed Back Radiations , 2020, Wirel. Pers. Commun..

[32]  Gu Yonghao,et al.  Semi-Supervised K-Means DDoS Detection Method Using Hybrid Feature Selection Algorithm , 2019 .

[33]  Neha Agrawal,et al.  Detection of Low-Rate Cloud DDoS Attacks in Frequency Domain Using Fast Hartley Transform , 2020, Wirel. Pers. Commun..

[34]  Xiangjian He,et al.  Detection of Denial-of-Service Attacks Based on Computer Vision Techniques , 2015, IEEE Transactions on Computers.

[35]  Guoyan Huang,et al.  A feature dimension reduction technology for predicting DDoS intrusion behavior in multimedia internet of things , 2019, Multimedia Tools and Applications.

[36]  Shashikala Tapaswi,et al.  An Adaptive Threshold-Based Attribute Selection to Classify Requests Under DDoS Attack in Cloud-Based Systems , 2020, Arabian Journal for Science and Engineering.

[37]  Richard E. Overill,et al.  Detection of known and unknown DDoS attacks using Artificial Neural Networks , 2016, Neurocomputing.

[38]  Malcolm I. Heywood,et al.  Feature selection for robust backscatter DDoS detection , 2015, 2015 IEEE 40th Local Computer Networks Conference Workshops (LCN Workshops).

[39]  Neeraj Kumar,et al.  A feature reduced intrusion detection system using ANN classifier , 2017, Expert Syst. Appl..

[40]  Zheli Liu,et al.  An efficient DDoS detection based on SU-Genetic feature selection , 2018, Cluster Computing.

[41]  Jiyeon Kim,et al.  An Intrusion Detection Model based on a Convolutional Neural Network , 2019, J. Multim. Inf. Syst..

[42]  Ali Selamat,et al.  Adaptive feature selection for denial of services (DoS) attack , 2017, 2017 IEEE Conference on Application, Information and Network Security (AINS).

[43]  Giancarlo Fortino,et al.  Intelligent temporal classification and fuzzy rough set-based feature selection algorithm for intrusion detection system in WSNs , 2019, Inf. Sci..