A New Framework for Classification of Distributed Denial of Service (DDOS) Attack in Cloud Computing by Machine Learning Techniques

Cloud Computing has revolutionized the Information Technology by allowing the users to use variety number of resources in different applications in a less expensive manner. The resources are allocated to access by providing scalability flexible on-demand access in a virtual manner, reduced maintenance with less infrastructure cost. The majority of resources are handled and managed by the organizations over the internet by using different standards and formats of the networking protocols. Various research and statistics have proved that the available and existing technologies are prone to threats and vulnerabilities in the protocols legacy in the form of bugs that pave way for intrusion in different ways by the attackers. The most common among attacks is the Distributed Denial of Service (DDoS) attack. This attack targets the cloud’s performance and cause serious damage to the entire cloud computing environment. In the DDoS attack scenario, the compromised computers are targeted. The attacks are done by transmitting a large number of packets injected with known and unknown bugs to a server. A huge portion of the network bandwidth of the users’ cloud infrastructure is affected by consuming enormous time of their servers. In this paper, we have proposed a DDoS Attack detection scheme based on Random Forest algorithm to mitigate the DDoS threat. This algorithm is used along with the signature detection techniques and generates a decision tree. This helps in the detection of signature attacks for the DDoS flooding attacks. We have also used other machine learning algorithms and analyzed based on the yielded results.

Download Full-text

Distributed Denial of Service Attacks and Defense in Cloud Computing

Research Anthology on Combating Denial-of-Service Attacks ◽

10.4018/978-1-7998-5348-0.ch027 ◽

2021 ◽

pp. 522-540

Author(s):

Gopal Singh Kushwah ◽

Virender Ranga

Keyword(s):

Cloud Computing ◽

Denial Of Service ◽

High Availability ◽

Distributed Denial Of Service ◽

Security Issue ◽

Network Resources ◽

Ddos Attack ◽

On Demand ◽

Learning Machine

Cloud computing has now become a part of many businesses. It provides on-demand resources to its users based on pay-as-you-use policy, across the globe. The high availability feature of this technology is affected by distributed denial of service (DDoS) attack, which is a major security issue. In this attack, cloud or network resources are exhausted, resulting in a denial of service for legitimate users. In this chapter, a classification of various types of DDoS attacks has been presented, and techniques for defending these attacks in cloud computing have been discussed. A discussion on challenges and open issues in this area is also given. Finally, a conceptual model based on extreme learning machine has been proposed to defend these attacks.

Download Full-text

An Empirical Evaluation On Comparative Machine Learning Techniques For Detection of The Distributed Denial of Service (DDoS) Attacks

Journal of Applied Science, Engineering, Technology, and Education ◽

10.35877/454ri.asci2192 ◽

2020 ◽

Vol 2 (1) ◽

pp. 18-27

Author(s):

Arnold Ojugo ◽

Andrew Okonji Eboka

Keyword(s):

Machine Learning ◽

Denial Of Service ◽

Empirical Evaluation ◽

Machine Learning Techniques ◽

Distributed Denial Of Service ◽

Ddos Attacks ◽

Secure Systems ◽

Data Encoding ◽

Signature Detection ◽

Learning Techniques

The advent of the Internet that aided the efficient sharing of resources. Also, it has introduced adversaries whom are today restlessly in their continued efforts at an effective, non-detectable means to invade secure systems, either for fun or personal gains. They achieve these feats via the use of malware, which is both on the rise, wreaks havoc alongside causing loads of financial losses to users. With the upsurge to counter these escapades, users and businesses today seek means to detect these evolving behavior and pattern by these adversaries. It is also to worthy of note that adversaries have also evolved, changing their own structure to make signature detection somewhat unreliable and anomaly detection tedious to network administrators. Our study investigates the detection of the distributed denial of service (DDoS) attacks using machine learning techniques. Results shows that though evolutionary models have been successfully implemented in the detection DDoS, the search for optima is an inconclusive and continuous task. That no one method yields a better optima than hybrids. That with hybrids, users must adequately resolve the issues of data conflicts arising from the dataset to be used, conflict from the adapted statistical methods arising from data encoding, and conflicts in parameter selection to avoid model overtraining, over-fitting and over-parameterization.

Download Full-text

DDoS Attacks and Defense Mechanisms Using Machine Learning Techniques for SDN

Research Anthology on Combating Denial-of-Service Attacks ◽

10.4018/978-1-7998-5348-0.ch013 ◽

2021 ◽

pp. 248-264

Author(s):

Rochak Swami ◽

Mayank Dave ◽

Virender Ranga

Keyword(s):

Machine Learning ◽

Defense Mechanisms ◽

Denial Of Service ◽

Machine Learning Techniques ◽

Learning Approaches ◽

Ddos Attacks ◽

Ddos Attack ◽

Learning Techniques ◽

New Generation ◽

Networking Technology

Distributed denial of service (DDoS) attack is one of the most disastrous attacks that compromises the resources and services of the server. DDoS attack makes the services unavailable for its legitimate users by flooding the network with illegitimate traffic. Most commonly, it targets the bandwidth and resources of the server. This chapter discusses various types of DDoS attacks with their behavior. It describes the state-of-the-art of DDoS attacks. An emerging technology named “Software-defined networking” (SDN) has been developed for new generation networks. It has become a trending way of networking. Due to the centralized networking technology, SDN suffers from DDoS attacks. SDN controller manages the functionality of the complete network. Therefore, it is the most vulnerable target of the attackers to be attacked. This work illustrates how DDoS attacks affect the whole working of SDN. The objective of this chapter is also to provide a better understanding of DDoS attacks and how machine learning approaches may be used for detecting DDoS attacks.

Download Full-text

DDoS attack detection using machine learning techniques in cloud computing environments

2017 3rd International Conference of Cloud Computing Technologies and Applications (CloudTech) ◽

10.1109/cloudtech.2017.8284731 ◽

2017 ◽

Cited By ~ 19

Author(s):

Marwane Zekri ◽

Said El Kafhali ◽

Noureddine Aboutabit ◽

Youssef Saadi

Keyword(s):

Machine Learning ◽

Cloud Computing ◽

Attack Detection ◽

Machine Learning Techniques ◽

Ddos Attack ◽

Learning Techniques ◽

Computing Environments ◽

Ddos Attack Detection

Download Full-text

Machine Learning Based Effective Classification of Distributed Denial of Service Attacks

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.l2994.129219 ◽

2019 ◽

Vol 9 (2) ◽

pp. 1060-1064

Keyword(s):

Machine Learning ◽

Denial Of Service ◽

Supervised Machine Learning ◽

Machine Learning Techniques ◽

Detection Accuracy ◽

Learning Approach ◽

Distributed Denial Of Service ◽

Ddos Attacks ◽

Learning Techniques ◽

Machine Learning Approach

Distributed Denial of Service Attack (DDoS) is a deadliest weapon which overwhelm the server or network by sending flood of packets towards it. The attack disrupts the services running on the target thereby blocking the legitimate traffic accessing its services. Various advanced machine learning techniques have been applied for detection of different types of DDoS attacks but still the attack remains a potential threat to the world. There are mainly two broad categories of machine learning techniques: supervised machine learning approach and unsupervised machine learning approach. Supervised machine learning approach requires labelled attack traffic datasets whereas unsupervised machine learning approach analyses incoming network traffic and then categorizes it. In this paper we have attempted to apply four different classifiers for the detection of DDoS attacks. The four classifiers applied are Logistic Regression, Naïve Bayes, K- Nearest Neighbor and Artificial Neural Network. The chosen classifiers provide stable results when there is a large dataset. We compared their detection accuracy on KDD dataset which is a benchmark dataset in the field of network security. This paper is novel as it explains each pre-processing step with python conversion functions and explained in detail all the classifiers and detection accuracy with their functions in python as well.

Download Full-text

Distributed Denial of Service Attacks and Defense in Cloud Computing

Advances in Wireless Technologies and Telecommunication - Handbook of Research on the IoT, Cloud Computing, and Wireless Network Optimization ◽

10.4018/978-1-5225-7335-7.ch003 ◽

2019 ◽

pp. 41-59

Author(s):

Gopal Singh Kushwah ◽

Virender Ranga

Keyword(s):

Cloud Computing ◽

Denial Of Service ◽

High Availability ◽

Distributed Denial Of Service ◽

Security Issue ◽

Network Resources ◽

Ddos Attack ◽

On Demand ◽

Learning Machine

Cloud computing has now become a part of many businesses. It provides on-demand resources to its users based on pay-as-you-use policy, across the globe. The high availability feature of this technology is affected by distributed denial of service (DDoS) attack, which is a major security issue. In this attack, cloud or network resources are exhausted, resulting in a denial of service for legitimate users. In this chapter, a classification of various types of DDoS attacks has been presented, and techniques for defending these attacks in cloud computing have been discussed. A discussion on challenges and open issues in this area is also given. Finally, a conceptual model based on extreme learning machine has been proposed to defend these attacks.

Download Full-text

DDoS Attacks and Defense Mechanisms Using Machine Learning Techniques for SDN

Security and Privacy Issues in Sensor Networks and IoT - Advances in Information Security, Privacy, and Ethics ◽

10.4018/978-1-7998-0373-7.ch008 ◽

2020 ◽

pp. 193-214 ◽

Cited By ~ 1

Author(s):

Rochak Swami ◽

Mayank Dave ◽

Virender Ranga

Keyword(s):

Machine Learning ◽

Defense Mechanisms ◽

Denial Of Service ◽

Machine Learning Techniques ◽

Learning Approaches ◽

Ddos Attacks ◽

Ddos Attack ◽

Learning Techniques ◽

New Generation ◽

Networking Technology

Distributed denial of service (DDoS) attack is one of the most disastrous attacks that compromises the resources and services of the server. DDoS attack makes the services unavailable for its legitimate users by flooding the network with illegitimate traffic. Most commonly, it targets the bandwidth and resources of the server. This chapter discusses various types of DDoS attacks with their behavior. It describes the state-of-the-art of DDoS attacks. An emerging technology named “Software-defined networking” (SDN) has been developed for new generation networks. It has become a trending way of networking. Due to the centralized networking technology, SDN suffers from DDoS attacks. SDN controller manages the functionality of the complete network. Therefore, it is the most vulnerable target of the attackers to be attacked. This work illustrates how DDoS attacks affect the whole working of SDN. The objective of this chapter is also to provide a better understanding of DDoS attacks and how machine learning approaches may be used for detecting DDoS attacks.

Download Full-text

Detection of Distributed Denial of Service Attacks in SDN using Machine learning techniques

2021 International Conference on Computer Communication and Informatics (ICCCI) ◽

10.1109/iccci50826.2021.9402517 ◽

2021 ◽

Author(s):

K.Muthamil Sudar ◽

M. Beulah ◽

P. Deepalakshmi ◽

P. Nagaraj ◽

P. Chinnasamy

Keyword(s):

Machine Learning ◽

Denial Of Service ◽

Machine Learning Techniques ◽

Denial Of Service Attacks ◽

Distributed Denial Of Service ◽

Learning Techniques

Download Full-text

A Brief Survey on Text Classification Using Various Machine Learning Techniques

International Journal of Advanced Research in Computer Science and Software Engineering ◽

10.23956/ijarcsse.v8i1.521 ◽

2018 ◽

Vol 8 (1) ◽

pp. 14

Author(s):

Padmavathi .S ◽

M. Chidambaram

Keyword(s):

Machine Learning ◽

Text Classification ◽

Fixed Number ◽

Machine Learning Techniques ◽

Online Information ◽

Rule Based ◽

Learning Techniques ◽

Machine Learning Approach ◽

Rule Based Approach

Text classification has grown into more significant in managing and organizing the text data due to tremendous growth of online information. It does classification of documents in to fixed number of predefined categories. Rule based approach and Machine learning approach are the two ways of text classification. In rule based approach, classification of documents is done based on manually defined rules. In Machine learning based approach, classification rules or classifier are defined automatically using example documents. It has higher recall and quick process. This paper shows an investigation on text classification utilizing different machine learning techniques.

Download Full-text