Evaluation of Classification algorithms for Distributed Denial of Service Attack Detection

Maulik Gohil; Sathish Kumar

doi:10.1109/AIKE48582.2020.00028

Evaluation of Classification algorithms for Distributed Denial of Service Attack Detection

Maulik Gohil
, Sathish Kumar

Computer Science

Cleveland State University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

38 Scopus citations

Abstract

Distributed Denial of Service (DDoS) attacks aims exhausting the target network with malicious traffic, which is a threat to the availability of the service. Many detection systems, specifically Intrusion Detection System (IDS) have been proposed throughout the last two decades as the Internet evolved, although users and organizations find it continuously challenging and defeated while dealing with DDoS. Though, IDS is the first point of defense for protecting critical networks against ever evolving issues of intrusive activities, however it should be up to date all the time to detect any anomalous behavior so that integrity, confidentiality and availability of the service can be preserved. But, the accuracy of new detection methods, techniques, algorithms heavily rely on the existence of well-designed datasets for training purposes and evaluation by creating the classifier model. In this work, experimentation has been carried out using major supervised classification algorithms to classify the DDoS attack accurately from the legitimate flows. Among all the classifier, tree-based classifiers and distance-based classifiers performed the best.

Original language	English
Title of host publication	Proceedings - 2020 IEEE 3rd International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020
Place of Publication	usa
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	138-141
Number of pages	4
ISBN (Electronic)	9781728187082
DOIs	https://doi.org/10.1109/AIKE48582.2020.00028
State	Published - Dec 1 2020
Event	3rd IEEE International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020 - Irvine, United States Duration: Dec 9 2020 → Dec 11 2020

Conference

Conference	3rd IEEE International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020
Country/Territory	United States
City	Irvine
Period	12/9/20 → 12/11/20

Keywords

DDoS
Decision Tree
K-NN
Logistic Regression
Machine Learning
Naïve Bayes
Random Forest
SVM

Access to Document

10.1109/AIKE48582.2020.00028

Cite this

Gohil, M., & Kumar, S. (2020). Evaluation of Classification algorithms for Distributed Denial of Service Attack Detection. In Proceedings - 2020 IEEE 3rd International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020 (pp. 138-141). Article 9355464 Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/AIKE48582.2020.00028

@inproceedings{0b31f33f726b496aad0a3ed22a5b8fa6,

title = "Evaluation of Classification algorithms for Distributed Denial of Service Attack Detection",

abstract = "Distributed Denial of Service (DDoS) attacks aims exhausting the target network with malicious traffic, which is a threat to the availability of the service. Many detection systems, specifically Intrusion Detection System (IDS) have been proposed throughout the last two decades as the Internet evolved, although users and organizations find it continuously challenging and defeated while dealing with DDoS. Though, IDS is the first point of defense for protecting critical networks against ever evolving issues of intrusive activities, however it should be up to date all the time to detect any anomalous behavior so that integrity, confidentiality and availability of the service can be preserved. But, the accuracy of new detection methods, techniques, algorithms heavily rely on the existence of well-designed datasets for training purposes and evaluation by creating the classifier model. In this work, experimentation has been carried out using major supervised classification algorithms to classify the DDoS attack accurately from the legitimate flows. Among all the classifier, tree-based classifiers and distance-based classifiers performed the best.",

keywords = "DDoS, Decision Tree, K-NN, Logistic Regression, Machine Learning, Na{\"i}ve Bayes, Random Forest, SVM",

author = "Maulik Gohil and Sathish Kumar",

year = "2020",

month = dec,

day = "1",

doi = "10.1109/AIKE48582.2020.00028",

language = "English",

pages = "138--141",

booktitle = "Proceedings - 2020 IEEE 3rd International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

note = "3rd IEEE International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020 ; Conference date: 09-12-2020 Through 11-12-2020",

}

Gohil, M & Kumar, S 2020, Evaluation of Classification algorithms for Distributed Denial of Service Attack Detection. in Proceedings - 2020 IEEE 3rd International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020., 9355464, Institute of Electrical and Electronics Engineers Inc., usa, pp. 138-141, 3rd IEEE International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020, Irvine, United States, 12/9/20. https://doi.org/10.1109/AIKE48582.2020.00028

Evaluation of Classification algorithms for Distributed Denial of Service Attack Detection. / Gohil, Maulik; Kumar, Sathish.
Proceedings - 2020 IEEE 3rd International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020. usa: Institute of Electrical and Electronics Engineers Inc., 2020. p. 138-141 9355464.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Evaluation of Classification algorithms for Distributed Denial of Service Attack Detection

AU - Gohil, Maulik

AU - Kumar, Sathish

PY - 2020/12/1

Y1 - 2020/12/1

N2 - Distributed Denial of Service (DDoS) attacks aims exhausting the target network with malicious traffic, which is a threat to the availability of the service. Many detection systems, specifically Intrusion Detection System (IDS) have been proposed throughout the last two decades as the Internet evolved, although users and organizations find it continuously challenging and defeated while dealing with DDoS. Though, IDS is the first point of defense for protecting critical networks against ever evolving issues of intrusive activities, however it should be up to date all the time to detect any anomalous behavior so that integrity, confidentiality and availability of the service can be preserved. But, the accuracy of new detection methods, techniques, algorithms heavily rely on the existence of well-designed datasets for training purposes and evaluation by creating the classifier model. In this work, experimentation has been carried out using major supervised classification algorithms to classify the DDoS attack accurately from the legitimate flows. Among all the classifier, tree-based classifiers and distance-based classifiers performed the best.

AB - Distributed Denial of Service (DDoS) attacks aims exhausting the target network with malicious traffic, which is a threat to the availability of the service. Many detection systems, specifically Intrusion Detection System (IDS) have been proposed throughout the last two decades as the Internet evolved, although users and organizations find it continuously challenging and defeated while dealing with DDoS. Though, IDS is the first point of defense for protecting critical networks against ever evolving issues of intrusive activities, however it should be up to date all the time to detect any anomalous behavior so that integrity, confidentiality and availability of the service can be preserved. But, the accuracy of new detection methods, techniques, algorithms heavily rely on the existence of well-designed datasets for training purposes and evaluation by creating the classifier model. In this work, experimentation has been carried out using major supervised classification algorithms to classify the DDoS attack accurately from the legitimate flows. Among all the classifier, tree-based classifiers and distance-based classifiers performed the best.

KW - DDoS

KW - Decision Tree

KW - K-NN

KW - Logistic Regression

KW - Machine Learning

KW - Naïve Bayes

KW - Random Forest

KW - SVM

UR - https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85102396625&origin=inward

UR - https://www.scopus.com/inward/citedby.uri?partnerID=HzOxMe3b&scp=85102396625&origin=inward

U2 - 10.1109/AIKE48582.2020.00028

DO - 10.1109/AIKE48582.2020.00028

M3 - Conference contribution

SP - 138

EP - 141

BT - Proceedings - 2020 IEEE 3rd International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020

PB - Institute of Electrical and Electronics Engineers Inc.

CY - usa

T2 - 3rd IEEE International Conference on Artificial Intelligence and Knowledge Engineering, AIKE 2020

Y2 - 9 December 2020 through 11 December 2020

ER -

Evaluation of Classification algorithms for Distributed Denial of Service Attack Detection

Abstract

Conference

Keywords

Access to Document

Other files and links

Cite this