Rana Abu Bakar scite author profile

Computer networks are subject to an unprecedented number and variety of attack, the majority of which are distributed denial of service (DDoS). The nature and mechanisms employed in these DDoS attacks continually change, creating a significant challenge for detection and management. To address this evolving nature of attacks, approaches are required that can effectively detect and mitigate emerging attacks. In this paper, we provide a mechanism that not only detects the presence of a DDoS attacks but also identifies the route of attack and commences a process of mitigation at the initial stage of identification. The proposed research involves an optimized SVM classification algorithm integrated with SNORT IPS to provide prevention mechanisms for the entire network when subject to DDoS attack. The proposed IPS method allows traffic identified as legitimate to pass through the network, whereas suspect traffic is flagged and has to go through an identification system. We present the algorithm with experimental results that show better performance than simple Snort IPS, Probabilistic Neural Network (PNN), Back Propagation (BP), Chi-square, and PSO-SVM in terms of accuracy, exposure and specificity. These results show that the average accuracy rate of our method is 97 percent.

show abstract

An Intelligent Agent-Based Detection System for DDoS Attacks Using Automatic Feature Extraction and Selection

Bakar

Huang

Javed

et al. 2023

Sensors

View full text Add to dashboard Cite

Distributed Denial of Service (DDoS) attacks, advanced persistent threats, and malware actively compromise the availability and security of Internet services. Thus, this paper proposes an intelligent agent system for detecting DDoS attacks using automatic feature extraction and selection. We used dataset CICDDoS2019, a custom-generated dataset, in our experiment, and the system achieved a 99.7% improvement over state-of-the-art machine learning-based DDoS attack detection techniques. We also designed an agent-based mechanism that combines machine learning techniques and sequential feature selection in this system. The system learning phase selected the best features and reconstructed the DDoS detector agent when the system dynamically detected DDoS attack traffic. By utilizing the most recent CICDDoS2019 custom-generated dataset and automatic feature extraction and selection, our proposed method meets the current, most advanced detection accuracy while delivering faster processing than the current standard.

show abstract

LSNCP: Lightweight and Secure Numeric Comparison Protocol for Wireless Body Area Networks

Yin

Huang

Xing

et al. 2023

IEEE Internet Things J.

View full text Add to dashboard Cite

Efficient Traffic Management For Resolving Traffic Congestion On Motorways

Arslan¹,

Bakar

Ahad³

2023

View full text Add to dashboard Cite

DPIDNS:A Deep Packet Inspection Based IPS for Security Of P4 Network Data Plane

Ahad¹,

Bakar

Arslan³

et al. 2023

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Rana Abu Bakar

An Effective Mechanism to Mitigate Real-Time DDoS Attack

An Intelligent Agent-Based Detection System for DDoS Attacks Using Automatic Feature Extraction and Selection

LSNCP: Lightweight and Secure Numeric Comparison Protocol for Wireless Body Area Networks

Efficient Traffic Management For Resolving Traffic Congestion On Motorways

DPIDNS:A Deep Packet Inspection Based IPS for Security Of P4 Network Data Plane

Contact Info

Product

Resources

About