Proceedings Article10.1109/CSPA48992.2020.9068679
IDS for Improving DDoS Attack Recognition Based on Attack Profiles and Network Traffic Features
Amer A. Sallam,Muhammad Nomani Kabir,Yasser M. Alginahi,Ahmed Jamal,Thamer Khalil Esmeel +4 more
- 01 Feb 2020
20
TL;DR: The attacks database is split into a set of groups by classifying the attack types in terms of the most dominant features that define the profile of each attack along with the sensitive network traffic features, providing plausible results when comparing to other existing models.
read more
Abstract: Intrusion detection system (IDS) is one of the important parts in security domains of the present time. Distributed Denial of Service (DDoS) detection involves complex process which reduces the overall performance of the system, and consequently, it may incur inefficiency or failure to the network. In this paper, the attacks database is split into a set of groups by classifying the attack types in terms of the most dominant features that define the profile of each attack along with the sensitive network traffic features. Decision Tree, AdaBoost, Random Forest, K-Nearest Neighbors and Naive Bayes are then used to classify each attack according to their profile features. DDoS attack was considered for all chosen classifiers. It is found that the average classification accuracy for the above-mentioned algorithms is 95.31%, 95.68%, 95.69%, 92.61 % and 83.11 %, respectively, providing plausible results when comparing to other existing models.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
An efficient network intrusion detection model for IoT security using K-NN classifier and feature selection
TL;DR: This paper presents a network intrusion detection model for IoT environments using a K-Nearest Neighbors (K-NN) classifier and feature selection and presents many advantages and reliable performances compared with previous models relying on the same dataset.
68
An Ensemble Learning Based Intrusion Detection Model for Industrial IoT Security
TL;DR: In this article , an intrusion detection model exploiting feature engineering and machine learning for industrial IoT security is proposed, which combines isolation forest (IF) with Pearson's correlation coefficient (PCC) to reduce computational cost and prediction time.
45
An effective intrusion detection approach based on ensemble learning for IIoT edge computing
TL;DR: Wang et al. as discussed by the authors proposed using Pearson's correlation coefficient (PCC) and isolation forest (IF) for feature selection and dimensionality reduction methods to promote the machine learning models' detection rate and accuracy.
39
RDNet: Regression Dense and Attention for Object Detection in Traffic Symbols
TL;DR: The use of a dense network structure has realized the diversity of different receptive fields in the process of multi-scale feature extraction and the ability to improve has been improved.
15
MLIDS: Machine Learning Enabled Intrusion Detection System for Health Monitoring Framework Using BA-WSN
TL;DR: Experimental results prove that Random Forest based Intrusion Detection Model has the highest classification accuracy, and Experimental results show that the achieved results outperform relevant work in terms of accuracy.
12
References
Semi-Supervised Learning
Olivier Chapelle,Bernhard Schlkopf,Alexander Zien +2 more
- 31 Mar 2010
TL;DR: Semi-supervised learning (SSL) as discussed by the authors is the middle ground between supervised learning (in which all training examples are labeled) and unsupervised training (where no label data are given).
•Journal Article
Supervised Machine Learning: A Review of Classification Techniques
TL;DR: The goal of supervised learning is to build a concise model of the distribution of class labels in terms of predictor features, and the resulting classifier is then used to assign class labels to the testing instances where the values of the predictor features are known, but the value of the class label is unknown.
3.7K
Toward Generating a New Intrusion Detection Dataset and Intrusion Traffic Characterization
Iman Sharafaldin,Arash Habibi Lashkari,Ali A. Ghorbani +2 more
- 01 Jan 2018
TL;DR: A reliable dataset is produced that contains benign and seven common attack network flows, which meets real world criteria and is publicly avaliable and evaluates the performance of a comprehensive set of network traffic features and machine learning algorithms to indicate the best set of features for detecting the certain attack categories.
3.6K
Semi-supervised Learning.
Xiaojin Zhu
- 01 Jan 2017
TL;DR: In this article, the authors make a distinction between inductive semi-supervised learning and transductive learning, where the goal is to learn a predictor that predicts future test data better than the predictor learned from the labeled training data alone.
2.9K
•Book
Hands-On Machine Learning with Scikit-Learn and TensorFlow: Concepts, Tools, and Techniques to Build Intelligent Systems
Aurélien Géron
- 13 Mar 2017
TL;DR: This practical book shows you how to implement programs capable of learning from data by using concrete examples, minimal theory, and two production-ready Python frameworks-scikit-learn and TensorFlow-author Aurelien Geron helps you gain an intuitive understanding of the concepts and tools for building intelligent systems.
2.7K