Distributed denial of service attacks detection for software defined networks based on evolutionary decision tree model

Kamel, Hasan; Abdullah, Mahmood Zaki

doi:10.11591/eei.v11i4.3835

Cited by 9 publications

(8 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It can be claimed that the system's effectiveness rises in direct proportion to the accuracy of the data. The suggested approach for intrusion detection is validated using the distributed denial of service (DDoS) [24]− [27], CIC-DDoS2019 dataset (87 features) in order to get over these challenges as is represented in Figures 2 and 3. In this phase, all 87 features of the dataset is collected and preprocessed for checking the validation of data.…”

Section: Methods 31 Phase 1: Dataset Collection and Preprocessingmentioning

confidence: 99%

“…In this phase in order to increase the task scheduling reaction time, Algorithm 1 divides the priority instances into various priority queues. For training the model, the algorithm takes in 87 features as input (CIC-DDos2019 dataset) , and is given to the procedure data_ processing selection where priority resolver is used as the classifier and dimensionality reduction method [26], [27] is applied to reduce features from 87 to 67 maintaining the efficiency and giving the required accuracy and other evaluation metrics. Algorithm: the model is designed to perform the following actions: input data, perform feature selection based on priority resolver, train the model, and classification of label data.…”

Section: Phase 3: Priority Resolver and Training Developermentioning

confidence: 99%

See 1 more Smart Citation

Machine learning approach for intrusion detection system using dimensionality reduction

Manikandan,

Dhilipan

2024

IJEECS

View full text Add to dashboard Cite

As cyberspace has emerged, security in all the domains like networks, cloud, and databases has become a greater concern in real-time distributed systems. Existing systems for detecting intrusions (IDS) are having challenges coping with constantly changing threats. The proposed model, DR-DBMS (dimensionality reduction in database management systems), creates a unique strategy that combines supervised machine learning algorithms, dimensionality reduction approaches and advanced rule-based classifiers to improve intrusion detection accuracy in terms of different types of attacks. According to simulation results, the DR-DBMS system detected the intrusion attack in 0.07 seconds and with a smaller number of features using the dimensionality reduction and feature selection techniques efficiently.

show abstract

Section: Methods 31 Phase 1: Dataset Collection and Preprocessingmentioning

confidence: 99%

Section: Phase 3: Priority Resolver and Training Developermentioning

confidence: 99%

Machine learning approach for intrusion detection system using dimensionality reduction

Manikandan,

Dhilipan

2024

IJEECS

View full text Add to dashboard Cite

show abstract

“…Other pre-processing methods include category value encoding, addressing missing values, and null value elimination. Categorical variables lacking numerical values, including source-destination IP and protocol, were encoded using one-hot encoding [50].…”

Section: Comparative Review Based On Datasetsmentioning

confidence: 99%

A Comparative Review on DDoS Attack Detection Using Machine Learning Techniques

Zerin Hasan Sahosh,

Azraf Faheem,

Marzana Bintay Tuba

et al. 2024

Malaysian J. Sci. Adv. Tech.

View full text Add to dashboard Cite

The rapid growth of the internet and the increasing reliance on digital infrastructures have posed significant challenges to cybersecurity. Among the other variants of attacks, Distributed Denial of Service (DDoS) attacks have emerged as one of the most destructive and common threats. These attacks disrupt or slow down network services by overwhelming the network infrastructure with a massive volume of malicious traffic. To effectively identify and mitigate DDoS attacks, machine learning techniques have been extensively employed in intrusion detection systems. Machine learning approaches offer the advantage of automating the detection process by learning patterns and characteristics of DDoS attacks from historical data. Researchers have explored various machine learning algorithms such as K-Nearest Neighbours (KNN), Support Vector Machine (SVM), Random Forest (RF), and Naïve Bayes to classify and detect DDoS attacks. These algorithms leverage features extracted from network traffic data, including packet size, packet delay patterns, and traffic behaviour, to differentiate between normal and malicious traffic.

show abstract

“…As the name suggests, DT is a tree-based model characterized by its simplicity in understanding decisions and the ability to select the most preferential features [19]. In addition, it can classify data without vast calculations [20]. b.…”

Section: Learning Stagementioning

confidence: 99%

Feature-based real-time distributed denial of service detection in SDN using machine learning and Spark

Samaan

Jeiad

2023

Bulletin EEI

View full text Add to dashboard Cite

Recently, software defined networking (SDN) has been deployed extensively in diverse practical domains, providing a new direction in network management by separating the control plane from the data plane. Nevertheless, SDN is vulnerable to distributed denial of service (DDoS) attacks resulting from its centralized controller. Several studies have been suggested to address the DDoS attacks in SDN utilizing machine learning approaches. However, these approaches are resource-intensive and cause performance degradation since they cannot perform effectively in large-scale SDN networks that generate vast traffic statistics. To handle all these challenges, we build a DDoS attack detection model in SDN using Spark as a big data tool to overcome the limitations of conventional data processing methods. Four machine learning algorithms are employed. The decision tree (DT) is elected to be used for real-time deployment based on the performance results, which indicates that it has the best accuracy of 0.936. The model performance is compared with state-of-the-art and shows an overall better performance.

show abstract

Distributed denial of service attacks detection for software defined networks based on evolutionary decision tree model

Cited by 9 publications

References 33 publications

Machine learning approach for intrusion detection system using dimensionality reduction

Machine learning approach for intrusion detection system using dimensionality reduction

A Comparative Review on DDoS Attack Detection Using Machine Learning Techniques

Feature-based real-time distributed denial of service detection in SDN using machine learning and Spark

Contact Info

Product

Resources

About