分布式拒绝服务攻击检测的观察机制

IF 1.2 Q3 ENGINEERING, MULTIDISCIPLINARY

International Journal of Advances in Engineering Sciences and Applied Mathematics Pub Date : 2023-06-01 DOI:10.11591/ijaas.v12.i2.pp121-132

N. Katuk, Mohamad Sabri bin Sinal, M. Al-Samman, Ijaz Ahmad

{"title":"分布式拒绝服务攻击检测的观察机制","authors":"N. Katuk, Mohamad Sabri bin Sinal, M. Al-Samman, Ijaz Ahmad","doi":"10.11591/ijaas.v12.i2.pp121-132","DOIUrl":null,"url":null,"abstract":"This study proposes a continuous mechanism for detecting distributed denial of service (DDoS) attacks from network traffic data. The mechanism aims to systematically organise traffic data and prepare them for DDoS attack detection using convolutional deep-learning neural networks. The proposed mechanism contains ten phases covering activities, including data preprocessing, feature selection, data labelling, model building, model evaluation, DDoS detection, attack pattern identification, alert creation, notification delivery, and periodical data sampling. The evaluation results suggested that the detection model built based on convolutional deep-learning neural networks and relevant network traffic features provided 97.2% detection accuracy. The study designed a holistic mechanism that considers the systematic network traffic data management for continuous monitoring and good performance of DDoS attack detection. The proposed mechanism could provide a solution for network traffic data management and enhance the existing methods for DDoS attack detection. In addition, it generally contributes to the cybersecurity body of knowledge.","PeriodicalId":44367,"journal":{"name":"International Journal of Advances in Engineering Sciences and Applied Mathematics","volume":"82 1","pages":""},"PeriodicalIF":1.2000,"publicationDate":"2023-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"An observational mechanism for detection of distributed denial-of-service attacks\",\"authors\":\"N. Katuk, Mohamad Sabri bin Sinal, M. Al-Samman, Ijaz Ahmad\",\"doi\":\"10.11591/ijaas.v12.i2.pp121-132\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This study proposes a continuous mechanism for detecting distributed denial of service (DDoS) attacks from network traffic data. The mechanism aims to systematically organise traffic data and prepare them for DDoS attack detection using convolutional deep-learning neural networks. The proposed mechanism contains ten phases covering activities, including data preprocessing, feature selection, data labelling, model building, model evaluation, DDoS detection, attack pattern identification, alert creation, notification delivery, and periodical data sampling. The evaluation results suggested that the detection model built based on convolutional deep-learning neural networks and relevant network traffic features provided 97.2% detection accuracy. The study designed a holistic mechanism that considers the systematic network traffic data management for continuous monitoring and good performance of DDoS attack detection. The proposed mechanism could provide a solution for network traffic data management and enhance the existing methods for DDoS attack detection. In addition, it generally contributes to the cybersecurity body of knowledge.\",\"PeriodicalId\":44367,\"journal\":{\"name\":\"International Journal of Advances in Engineering Sciences and Applied Mathematics\",\"volume\":\"82 1\",\"pages\":\"\"},\"PeriodicalIF\":1.2000,\"publicationDate\":\"2023-06-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Journal of Advances in Engineering Sciences and Applied Mathematics\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.11591/ijaas.v12.i2.pp121-132\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q3\",\"JCRName\":\"ENGINEERING, MULTIDISCIPLINARY\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Advances in Engineering Sciences and Applied Mathematics","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.11591/ijaas.v12.i2.pp121-132","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"ENGINEERING, MULTIDISCIPLINARY","Score":null,"Total":0}

引用次数: 0

摘要

本研究提出了一种从网络流量数据中检测分布式拒绝服务(DDoS)攻击的连续机制。该机制旨在系统地组织流量数据，并使用卷积深度学习神经网络为DDoS攻击检测做好准备。该机制包含十个阶段，包括数据预处理、特征选择、数据标记、模型构建、模型评估、DDoS检测、攻击模式识别、警报创建、通知传递和定期数据采样。评价结果表明，基于卷积深度学习神经网络和相关网络流量特征构建的检测模型检测准确率为97.2%。本研究设计了一种考虑系统网络流量数据管理的整体机制，实现了持续监控和良好的DDoS攻击检测性能。该机制为网络流量数据管理提供了一种解决方案，增强了现有的DDoS攻击检测方法。此外，它通常有助于网络安全知识体系。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

An observational mechanism for detection of distributed denial-of-service attacks

This study proposes a continuous mechanism for detecting distributed denial of service (DDoS) attacks from network traffic data. The mechanism aims to systematically organise traffic data and prepare them for DDoS attack detection using convolutional deep-learning neural networks. The proposed mechanism contains ten phases covering activities, including data preprocessing, feature selection, data labelling, model building, model evaluation, DDoS detection, attack pattern identification, alert creation, notification delivery, and periodical data sampling. The evaluation results suggested that the detection model built based on convolutional deep-learning neural networks and relevant network traffic features provided 97.2% detection accuracy. The study designed a holistic mechanism that considers the systematic network traffic data management for continuous monitoring and good performance of DDoS attack detection. The proposed mechanism could provide a solution for network traffic data management and enhance the existing methods for DDoS attack detection. In addition, it generally contributes to the cybersecurity body of knowledge.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

International Journal of Advances in Engineering Sciences and Applied Mathematics ENGINEERING, MULTIDISCIPLINARY-

自引率

0.00%

发文量

期刊介绍： International Journal of Advances in Engineering Sciences and Applied Mathematics will be a thematic journal, where each issue will be dedicated to a specific area of engineering and applied mathematics. The journal will accept original articles and will also publish review article that summarize the state of the art and provide a perspective on areas of current research interest.Articles that contain purely theoretical results are discouraged.