N. Katuk, Mohamad Sabri bin Sinal, M. Al-Samman, Ijaz Ahmad
{"title":"分布式拒绝服务攻击检测的观察机制","authors":"N. Katuk, Mohamad Sabri bin Sinal, M. Al-Samman, Ijaz Ahmad","doi":"10.11591/ijaas.v12.i2.pp121-132","DOIUrl":null,"url":null,"abstract":"This study proposes a continuous mechanism for detecting distributed denial of service (DDoS) attacks from network traffic data. The mechanism aims to systematically organise traffic data and prepare them for DDoS attack detection using convolutional deep-learning neural networks. The proposed mechanism contains ten phases covering activities, including data preprocessing, feature selection, data labelling, model building, model evaluation, DDoS detection, attack pattern identification, alert creation, notification delivery, and periodical data sampling. The evaluation results suggested that the detection model built based on convolutional deep-learning neural networks and relevant network traffic features provided 97.2% detection accuracy. The study designed a holistic mechanism that considers the systematic network traffic data management for continuous monitoring and good performance of DDoS attack detection. The proposed mechanism could provide a solution for network traffic data management and enhance the existing methods for DDoS attack detection. In addition, it generally contributes to the cybersecurity body of knowledge.","PeriodicalId":1,"journal":{"name":"Accounts of Chemical Research","volume":null,"pages":null},"PeriodicalIF":16.4000,"publicationDate":"2023-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"An observational mechanism for detection of distributed denial-of-service attacks\",\"authors\":\"N. Katuk, Mohamad Sabri bin Sinal, M. Al-Samman, Ijaz Ahmad\",\"doi\":\"10.11591/ijaas.v12.i2.pp121-132\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This study proposes a continuous mechanism for detecting distributed denial of service (DDoS) attacks from network traffic data. The mechanism aims to systematically organise traffic data and prepare them for DDoS attack detection using convolutional deep-learning neural networks. The proposed mechanism contains ten phases covering activities, including data preprocessing, feature selection, data labelling, model building, model evaluation, DDoS detection, attack pattern identification, alert creation, notification delivery, and periodical data sampling. The evaluation results suggested that the detection model built based on convolutional deep-learning neural networks and relevant network traffic features provided 97.2% detection accuracy. The study designed a holistic mechanism that considers the systematic network traffic data management for continuous monitoring and good performance of DDoS attack detection. The proposed mechanism could provide a solution for network traffic data management and enhance the existing methods for DDoS attack detection. In addition, it generally contributes to the cybersecurity body of knowledge.\",\"PeriodicalId\":1,\"journal\":{\"name\":\"Accounts of Chemical Research\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":16.4000,\"publicationDate\":\"2023-06-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Accounts of Chemical Research\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.11591/ijaas.v12.i2.pp121-132\",\"RegionNum\":1,\"RegionCategory\":\"化学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"CHEMISTRY, MULTIDISCIPLINARY\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Accounts of Chemical Research","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.11591/ijaas.v12.i2.pp121-132","RegionNum":1,"RegionCategory":"化学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"CHEMISTRY, MULTIDISCIPLINARY","Score":null,"Total":0}
An observational mechanism for detection of distributed denial-of-service attacks
This study proposes a continuous mechanism for detecting distributed denial of service (DDoS) attacks from network traffic data. The mechanism aims to systematically organise traffic data and prepare them for DDoS attack detection using convolutional deep-learning neural networks. The proposed mechanism contains ten phases covering activities, including data preprocessing, feature selection, data labelling, model building, model evaluation, DDoS detection, attack pattern identification, alert creation, notification delivery, and periodical data sampling. The evaluation results suggested that the detection model built based on convolutional deep-learning neural networks and relevant network traffic features provided 97.2% detection accuracy. The study designed a holistic mechanism that considers the systematic network traffic data management for continuous monitoring and good performance of DDoS attack detection. The proposed mechanism could provide a solution for network traffic data management and enhance the existing methods for DDoS attack detection. In addition, it generally contributes to the cybersecurity body of knowledge.
期刊介绍:
Accounts of Chemical Research presents short, concise and critical articles offering easy-to-read overviews of basic research and applications in all areas of chemistry and biochemistry. These short reviews focus on research from the author’s own laboratory and are designed to teach the reader about a research project. In addition, Accounts of Chemical Research publishes commentaries that give an informed opinion on a current research problem. Special Issues online are devoted to a single topic of unusual activity and significance.
Accounts of Chemical Research replaces the traditional article abstract with an article "Conspectus." These entries synopsize the research affording the reader a closer look at the content and significance of an article. Through this provision of a more detailed description of the article contents, the Conspectus enhances the article's discoverability by search engines and the exposure for the research.