{"title":"分布式拒绝服务攻击检测的分类算法评估","authors":"Maulik Gohil, Sathish A. P. Kumar","doi":"10.1109/AIKE48582.2020.00028","DOIUrl":null,"url":null,"abstract":"Distributed Denial of Service (DDoS) attacks aims exhausting the target network with malicious traffic, which is a threat to the availability of the service. Many detection systems, specifically Intrusion Detection System (IDS) have been proposed throughout the last two decades as the Internet evolved, although users and organizations find it continuously challenging and defeated while dealing with DDoS. Though, IDS is the first point of defense for protecting critical networks against ever evolving issues of intrusive activities, however it should be up to date all the time to detect any anomalous behavior so that integrity, confidentiality and availability of the service can be preserved. But, the accuracy of new detection methods, techniques, algorithms heavily rely on the existence of well-designed datasets for training purposes and evaluation by creating the classifier model. In this work, experimentation has been carried out using major supervised classification algorithms to classify the DDoS attack accurately from the legitimate flows. Among all the classifier, tree-based classifiers and distance-based classifiers performed the best.","PeriodicalId":370671,"journal":{"name":"2020 IEEE Third International Conference on Artificial Intelligence and Knowledge Engineering (AIKE)","volume":"4 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"24","resultStr":"{\"title\":\"Evaluation of Classification algorithms for Distributed Denial of Service Attack Detection\",\"authors\":\"Maulik Gohil, Sathish A. P. Kumar\",\"doi\":\"10.1109/AIKE48582.2020.00028\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Distributed Denial of Service (DDoS) attacks aims exhausting the target network with malicious traffic, which is a threat to the availability of the service. Many detection systems, specifically Intrusion Detection System (IDS) have been proposed throughout the last two decades as the Internet evolved, although users and organizations find it continuously challenging and defeated while dealing with DDoS. Though, IDS is the first point of defense for protecting critical networks against ever evolving issues of intrusive activities, however it should be up to date all the time to detect any anomalous behavior so that integrity, confidentiality and availability of the service can be preserved. But, the accuracy of new detection methods, techniques, algorithms heavily rely on the existence of well-designed datasets for training purposes and evaluation by creating the classifier model. In this work, experimentation has been carried out using major supervised classification algorithms to classify the DDoS attack accurately from the legitimate flows. Among all the classifier, tree-based classifiers and distance-based classifiers performed the best.\",\"PeriodicalId\":370671,\"journal\":{\"name\":\"2020 IEEE Third International Conference on Artificial Intelligence and Knowledge Engineering (AIKE)\",\"volume\":\"4 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"24\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 IEEE Third International Conference on Artificial Intelligence and Knowledge Engineering (AIKE)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/AIKE48582.2020.00028\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE Third International Conference on Artificial Intelligence and Knowledge Engineering (AIKE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/AIKE48582.2020.00028","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Evaluation of Classification algorithms for Distributed Denial of Service Attack Detection
Distributed Denial of Service (DDoS) attacks aims exhausting the target network with malicious traffic, which is a threat to the availability of the service. Many detection systems, specifically Intrusion Detection System (IDS) have been proposed throughout the last two decades as the Internet evolved, although users and organizations find it continuously challenging and defeated while dealing with DDoS. Though, IDS is the first point of defense for protecting critical networks against ever evolving issues of intrusive activities, however it should be up to date all the time to detect any anomalous behavior so that integrity, confidentiality and availability of the service can be preserved. But, the accuracy of new detection methods, techniques, algorithms heavily rely on the existence of well-designed datasets for training purposes and evaluation by creating the classifier model. In this work, experimentation has been carried out using major supervised classification algorithms to classify the DDoS attack accurately from the legitimate flows. Among all the classifier, tree-based classifiers and distance-based classifiers performed the best.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
