Intelligent feature selection using particle swarm optimization algorithm with a decision tree for DDoS attack detection

International Journal of Advances in Intelligent Informatics Pub Date : 2021-03-31 DOI:10.26555/IJAIN.V7I1.553

Aween Abubakr Saeed, N. Jameel

{"title":"Intelligent feature selection using particle swarm optimization algorithm with a decision tree for DDoS attack detection","authors":"Aween Abubakr Saeed, N. Jameel","doi":"10.26555/IJAIN.V7I1.553","DOIUrl":null,"url":null,"abstract":"Article history Received September 13, 2020 Revised November 9, 2020 Accepted November 18, 2020 Available online March 31, 2021 The explosive development of information technology is increasingly rising cyber-attacks. Distributed denial of service (DDoS) attack is a malicious threat to the modern cyber-security world, which causes performance disruption to the network servers. It is a pernicious type of attack that can forward a large amount of traffic to damage one or all target’s resources simultaneously and prevents authenticated users from accessing network services. The paper aims to select the least number of relevant DDoS attack detection features by designing an intelligent wrapper feature selection model that utilizes a binary-particle swarm optimization algorithm with a decision tree classifier. In this paper, the Binary-particle swarm optimization algorithm is used to resolve discrete optimization problems such as feature selection and decision tree classifier as a performance evaluator to evaluate the wrapper model’s accuracy using the selected features from the network traffic flows. The model’s intelligence is indicated by selecting 19 convenient features out of 76 features of the dataset. The experiments were accomplished on a large DDoS dataset. The optimal selected features were evaluated with different machine learning algorithms by performance measurement metrics regarding the accuracy, Recall, Precision, and F1-score to detect DDoS attacks. The proposed model showed a high accuracy rate by decision tree classifier 99.52%, random forest 96.94%, and multi-layer perceptron 90.06 %. Also, the paper compares the outcome of the proposed model with previous feature selection models in terms of performance measurement metrics. This outcome will be useful for improving DDoS attack detection systems based on machine learning algorithms. It is also probably applied to other research topics such as DDoS attack detection in the cloud environment and DDoS attack mitigation systems.","PeriodicalId":52195,"journal":{"name":"International Journal of Advances in Intelligent Informatics","volume":"256 1","pages":"37"},"PeriodicalIF":0.0000,"publicationDate":"2021-03-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"10","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Advances in Intelligent Informatics","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.26555/IJAIN.V7I1.553","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 10

Abstract

Article history Received September 13, 2020 Revised November 9, 2020 Accepted November 18, 2020 Available online March 31, 2021 The explosive development of information technology is increasingly rising cyber-attacks. Distributed denial of service (DDoS) attack is a malicious threat to the modern cyber-security world, which causes performance disruption to the network servers. It is a pernicious type of attack that can forward a large amount of traffic to damage one or all target’s resources simultaneously and prevents authenticated users from accessing network services. The paper aims to select the least number of relevant DDoS attack detection features by designing an intelligent wrapper feature selection model that utilizes a binary-particle swarm optimization algorithm with a decision tree classifier. In this paper, the Binary-particle swarm optimization algorithm is used to resolve discrete optimization problems such as feature selection and decision tree classifier as a performance evaluator to evaluate the wrapper model’s accuracy using the selected features from the network traffic flows. The model’s intelligence is indicated by selecting 19 convenient features out of 76 features of the dataset. The experiments were accomplished on a large DDoS dataset. The optimal selected features were evaluated with different machine learning algorithms by performance measurement metrics regarding the accuracy, Recall, Precision, and F1-score to detect DDoS attacks. The proposed model showed a high accuracy rate by decision tree classifier 99.52%, random forest 96.94%, and multi-layer perceptron 90.06 %. Also, the paper compares the outcome of the proposed model with previous feature selection models in terms of performance measurement metrics. This outcome will be useful for improving DDoS attack detection systems based on machine learning algorithms. It is also probably applied to other research topics such as DDoS attack detection in the cloud environment and DDoS attack mitigation systems.

查看原文本刊更多论文

基于决策树的粒子群智能特征选择算法在DDoS攻击检测中的应用

文章历史2020年9月13日收稿2020年11月9日修稿2020年11月18日在线2021年3月31日信息技术的爆炸式发展导致网络攻击日益增多。分布式拒绝服务(DDoS)攻击是现代网络安全领域的一种恶意威胁，它会导致网络服务器的性能中断。它是一种恶意攻击，可以通过转发大量流量，同时破坏目标的一个或全部资源，阻止通过认证的用户访问网络服务。本文设计了一种基于决策树分类器的二粒子群优化算法的智能包装特征选择模型，以选择最少数量的相关DDoS攻击检测特征。本文采用二元粒子群优化算法解决离散优化问题，如特征选择和决策树分类器作为性能评估器，利用从网络流量中选择的特征来评估包装器模型的准确性。从数据集的76个特征中选择19个方便的特征来表示模型的智能。实验是在一个大型DDoS数据集上完成的。使用不同的机器学习算法，通过检测DDoS攻击的准确性、召回率、精度和f1分数的性能测量指标，对所选择的最优特征进行评估。决策树分类器的准确率为99.52%，随机森林分类器的准确率为96.94%，多层感知器的准确率为90.06%。此外，本文还将所提出模型的结果与先前的特征选择模型在性能度量指标方面进行了比较。这一结果将有助于改进基于机器学习算法的DDoS攻击检测系统。它也可能应用于云环境中的DDoS攻击检测和DDoS攻击缓解系统等其他研究课题。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

International Journal of Advances in Intelligent Informatics Computer Science-Computer Vision and Pattern Recognition

CiteScore

3.00

自引率

0.00%

发文量