Application Layer DDoS Attack Detection Using Cuckoo Search Algorithm-Trained Radial Basis Function

Beitollahi, Hakem; Sharif, Dyari Mohammed; Fazeli, Mahdi

doi:10.1109/access.2022.3182818

Cited by 22 publications

(10 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…They evaluated the efficacy of their proposed IDS in detecting attacks targeting the widely employed IIoT protocols such as Modbus, Message Queuing Telemetry Transport (MQTT), and Building Automation Controls Network (BACnet). Beitollahi et al [22] proposed a technique for detecting Application Layer DDoS Attacks using a Cuckoo Search Algorithm (CSA)-trained Radial Basis Function (RBF) Neural Network, emphasizing GA for feature selection using Mean Square Error (MSE) from the NSL-KDD dataset. This technique demonstrated better performance compared to methods like k-NN and Bagging, with improvements in error and standard performance metrics.…”

Section: Related Workmentioning

confidence: 99%

A Genetic Algorithm- and t-Test-Based System for DDoS Attack Detection in IoT Networks

Saiyed,

Al-Anbagi

2024

IEEE Access

View full text Add to dashboard Cite

Internet and cloud-based technologies have facilitated the implementation of large-scale Internet of Things (IoT) networks. However, these networks are susceptible to emerging attacks. This paper proposes a novel lightweight system for detecting both high-and low-volume Distributed Denial of Service (DDoS) attacks in IoT networks, namely Genetic Algorithm (GA) and t-Test for DDoS Attack Detection (GADAD). The GADAD system employs edge-based technologies and has three phases. In the first phase, it creates and preprocesses an HL-IoT (High-and Low-volume attacks in IoT networks) dataset, which includes both high-and low-volume DDoS attacks. The second phase introduces a novel and lightweight method, called GAStats, for optimal feature selection using the GA and statistical parameters (Stats.). In the third phase, the system trains three tree-based Machine Learning (ML) models: Random Forest (RF), Extra-Tree (ET), and Adaptive Boosting (AdaBoost), along with other ML models, using both the selfgenerated HL-IoT dataset and the publicly available ToN-IoT dataset. The evaluation includes the assessment of key performance metrics such as accuracy, precision, recall, F1-score, Receiver Operating Characteristic Curve (ROC), computation time, and scalability analysis with overall system performance. The experimental results illustrate the efficacy of the feature selection method in optimizing the system's efficiency in detecting DDoS attacks in IoT networks, along with a reduction in computation time compared to existing state-ofthe-art techniques.

show abstract

Section: Related Workmentioning

confidence: 99%

A Genetic Algorithm- and t-Test-Based System for DDoS Attack Detection in IoT Networks

Saiyed,

Al-Anbagi

2024

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Reference [13] suggests an approach for detecting DDoS attacks at the application layer that combines the Cuckoo Search Algorithm (CSA) and Radial Basis Function (RBF). The suggested approach uses a Genetic Algorithm (GA) for feature selection and a CSA to train an RBF neural network to detect DDoS, where the NSL-KDD dataset was used.…”

Section: Related Workmentioning

confidence: 99%

Detection of Application-Layer DDoS Attacks Produced by Various Freely Accessible Toolkits Using Machine Learning

2023

Self Cite

View full text Add to dashboard Cite

Distributed Denial of Service (DDoS) attacks are a growing threat to online services, and various methods have been developed to detect them. However, past research has mainly focused on identifying attack patterns and types, without specifically addressing the role of freely available DDoS attack tools in the escalation of these attacks. This study aims to fill this gap by investigating the impact of the easy availability of DDoS attack tools on the frequency and severity of attacks. In this paper, a machine learning solution to detect DDoS attacks is proposed, which employs a feature selection technique to enhance its speed and efficiency, resulting in a substantial reduction in the feature subset. The provided evaluation metrics demonstrate that the model has a high accuracy level of 99.9%, a precision score of 96%, a recall score of 98%, and an F1 score of 97%. Moreover, the examination found that by utilizing a deliberate approach for feature selection, our model's efficacy was massively raised.

show abstract

“…In this paper, we go a step further and propose a Machine Learning (ML) solution by combining the Radial Basis Function (RBF) neural network with the cuckoo search algorithm to detect App-DDoS traffic. We begin by collecting training data and cleaning them, then applying data normalizing and finding an optimal subset of features using the Genetic Algorithm (GA) [4]. Yungaicela-Naula et.al.…”

Section: Literature Reviewmentioning

confidence: 99%

“…This method leverages Bayesian statistics to model and predict network traffic behavior while simultaneously applying regularization techniques to improve the reliability of these predictions. The combination of probabilistic modeling and regularization aims to distinguish between normal and malicious traffic effectively [4] [5].…”

Section: Introductionmentioning

confidence: 99%

Bayesian Regularization (BR) Optimization Based DDoS Detection for SDN and Next Generation Communication Network

Shekhar Nigam, Dr. Sanjay Kumar Tiwari

2023

tjjpt

View full text Add to dashboard Cite

The rapid evolution of communication networks, particularly Software-Defined Networking (SDN) and next-generation communication infrastructures, has introduced new challenges in securing these dynamic and complex environments. Among the most persistent threats are Distributed Denial of Service (DDoS) attacks, which can disrupt critical services and inflict severe economic and operational damages. To combat these threats, novel and adaptive DDoS detection mechanisms are crucial. This paper proposes a Bayesian Regularization (BR) optimization-based approach for DDoS detection in SDN and next-generation communication networks. Bayesian Regularization is a statistical technique that combines the strength of Bayesian analysis with optimization methodologies, enabling the model to adapt to changing network conditions and attack strategies. This approach leverages the inherent advantages of SDN, such as centralized control and real-time network monitoring, to enhance the accuracy and timeliness of DDoS detection.

show abstract

Application Layer DDoS Attack Detection Using Cuckoo Search Algorithm-Trained Radial Basis Function

Cited by 22 publications

References 25 publications

A Genetic Algorithm- and t-Test-Based System for DDoS Attack Detection in IoT Networks

A Genetic Algorithm- and t-Test-Based System for DDoS Attack Detection in IoT Networks

Detection of Application-Layer DDoS Attacks Produced by Various Freely Accessible Toolkits Using Machine Learning

Bayesian Regularization (BR) Optimization Based DDoS Detection for SDN and Next Generation Communication Network

Contact Info

Product

Resources

About