Multischeme feedforward artificial neural network architecture for DDoS attack detection

Muhammad, Arif Wirawan; Foozy, Cik Feresa Mohd; Mohammed, Kamaruddin Malik bin

doi:10.11591/eei.v10i1.2383

Cited by 5 publications

(6 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, the arrival of the package may not be together. This time lag is called jitter [31]. Jitter in IP networks is the variation in the latency on a packet flow between two systems when some packets take longer to travel from one system to the other.…”

Section: Network Communication Datamentioning

confidence: 99%

K-nearest neighbor algorithm analysis for path determination in network simulation using software defined network

Ritzkal

Suhadi²,

Amalia

et al. 2023

Bulletin EEI

View full text Add to dashboard Cite

Software defined network (SDN) is a new approach concept for planning, developing, and operating computer networks. Routing is the process of selecting paths on a network system to send or forward packets to the destination network. This study aims to obtain the results of the calculation analysis using the k-nearest neighbor (k-NN) method as the implementation of the recommendations. The results of the analysis use a mesh topology design approach with predicted values of throughput, jitter, delay, and packet loss. This value is used as a recommendation to the network manager to determine the best path. The best path selection from the analysis results is i) path-1 (very good) which includes switch 1, switch 2, and switch 4; ii) path-2 (good) to switch 1, switch 3 and switch 4 switch 4; iii) channel-3 (moderate) through switch 1, switch 2, switch 3 and switch 4; and iv) channel-4 (bad) through switch 1, switch 3, switch 2, and switch 4. While the calculation using the confusion matrix is accuracy=72.31%, precision=96.08% and recall=87.84%.

show abstract

Section: Network Communication Datamentioning

confidence: 99%

K-nearest neighbor algorithm analysis for path determination in network simulation using software defined network

Ritzkal

Suhadi²,

Amalia

et al. 2023

Bulletin EEI

View full text Add to dashboard Cite

show abstract

“…RNN is structured to apply the same set of weights to variable-sized input structures, create predictions, or traverse specified structures in topological order, resulting in a neural network that produces predictions [11]. What are dynamic recursive neural networks?…”

Section: Recursive Neural Networkmentioning

confidence: 99%

Gradient Techniques To Predict Distributed Denial-Of-Service Attack

Qamar

2022

ijcsm

View full text Add to dashboard Cite

A distributed denial-of-service (DDoS) attack attempts to prevent people from accessing a server. A website may become inaccessible due to a DDoS attack because the server is inundated with fake requests and cannot handle real ones. A DDoS attack affects a large number of computers. Attackers employ a zombie network, which is a collection of infected machines on which the attacker has hidden the denial-of-service attacking application to carry out a DDoS attack. The MATLAB 2018a simulator was used in this study for training. Additionally, during design, the knowledge discovery dataset (KDD) was cleaned and the values of attacks were incorporated. A neural network model was subsequently developed, and the KDD was trained using a recursive artificial neural network. This network was developed using five distinct training algorithms: 1) Fletcher–Powell conjugate gradient, 2) Polak–Ribiére conjugate gradient of, 3) resilient backpropagation, 4) gradient conjugation with Powell/Beale restarts, and 5) gradient descent algorithm with variable learning rate. The artificial neural network toolset in MATLAB was used to investigate the detection of DDoS attacks. The conjugate gradient with Powell/Beale restart algorithm had a success rate of 99.9% and a training time of 00:53. This inquiry uses the KDD-CUP99 dataset. Has a better level of accuracy, according to the results

show abstract

“…Previously, several researchers have already investigated the capability of DDoS for overloading traditional networks. The former concept for detecting DDoS was categorized into two approaches namely the statistic [8], [9] and artificial intelligence (AI) [10]- [14]. Several statistics approaches have been deployed e.g., the Entropy [8] which calculated the data randomness and specified the DDoS threshold by its value, Bloom-filter [9] which focused the detection phase by comparing the hash value of the incoming packet to assure the packet was not considered as SYN flood attack.…”

mentioning

confidence: 99%

“…The results stated the Naïve Bayes algorithm could predict the outcomes precisely even though there was no apparent result for the classification metric. Several papers also conducted the classification based on available datasets [12]- [14] (NSL-KDD, UNB ISCX 12, and UNSW-NB15). Idhammad et al [12] proposed the Semisupervised learning for classifying the DDoS attack gained 98.23% for accuracy.…”

mentioning

confidence: 99%

“…Idhammad et al [12] proposed the Semisupervised learning for classifying the DDoS attack gained 98.23% for accuracy. Mohammed et al [13] and Muhammad et al [14] utilized deep learning (DL) for detecting DDoS and achieved an accuracy at 97.82% and 99.60% respectively. The programmability feature in SDN may provide manageable structure for implementing AI to detect DDoS.…”

mentioning

confidence: 99%

See 1 more Smart Citation

Semi-supervised approach for detecting distributed denial of service in SD-honeypot network environment

Sumadi

Aditya

Maulana

et al. 2022

IJ-AI

View full text Add to dashboard Cite

Distributed Denial of Service (DDoS) attacks is the most common type of cyber-attack. Therefore, an appropriate mechanism is needed to overcome those problems. This paper proposed an integration method between the honeypot sensor and software defined network (SDN) (SD-honeypot network). In terms of the attack detection process, the honeypot server utilized the Semi-supervised learning method in the attack classification process by combining the Pseudo-labelling model (support vector machine (SVM) algorithm) and the subsequent classification with the Adaptive Boosting method. The dataset used in this paper is monitoring data taken by the Suricata sensor. The research experiment was conducted by examining several variables, namely the accuracy, precision, and recall pointed at 99%, 66%, and 66%, respectively. The central processing unit (CPU) usage during classification was relatively small, which was around 14%. The average time of flow rule mitigation installation was 40s. In addition, the packet/prediction loss occurred during the attack, which caused several packets in the attack not to be classified was pointed at 43%.

show abstract

Multischeme feedforward artificial neural network architecture for DDoS attack detection

Cited by 5 publications

References 19 publications

K-nearest neighbor algorithm analysis for path determination in network simulation using software defined network

K-nearest neighbor algorithm analysis for path determination in network simulation using software defined network

Gradient Techniques To Predict Distributed Denial-Of-Service Attack

Semi-supervised approach for detecting distributed denial of service in SD-honeypot network environment

Contact Info

Product

Resources

About