Semi-supervised approach for detecting distributed denial of service in SD-honeypot network environment
نویسندگان
چکیده
Distributed Denial of Service (DDoS) attacks is the most common type cyber-attack. Therefore, an appropriate mechanism needed to overcome those problems. This paper proposed integration method between honeypot sensor and software defined network (SDN) (SD-honeypot network). In terms attack detection process, server utilized Semi-supervised learning in classification process by combining Pseudo-labelling model (support vector machine (SVM) algorithm) subsequent with Adaptive Boosting method. The dataset used this monitoring data taken Suricata sensor. research experiment was conducted examining several variables, namely accuracy, precision, recall pointed at 99%, 66%, respectively. central processing unit (CPU) usage during relatively small, which around 14%. average time flow rule mitigation installation 40s. addition, packet/prediction loss occurred attack, caused packets not be classified 43%.
منابع مشابه
Neural Network Based Protection of Software Defined Network Controller against Distributed Denial of Service Attacks
Software Defined Network (SDN) is a new architecture for network management and its main concept is centralizing network management in the network control level that has an overview of the network and determines the forwarding rules for switches and routers (the data level). Although this centralized control is the main advantage of SDN, it is also a single point of failure. If this main contro...
متن کاملDetecting Distributed Denial of Service Attacks by Sharing Distributed Beliefs
We propose a distributed approach to detect distributed denial of service attacks by monitoring the increase of new IP addresses. Unlike previous proposals for bandwidth attack detection schemes which are based on monitoring the traffic volume, our scheme is very effective for highly distributed denial of service attacks. Our scheme exploits an inherent feature of DDoS attacks, which makes it h...
متن کاملDetecting Concept Drift in Data Stream Using Semi-Supervised Classification
Data stream is a sequence of data generated from various information sources at a high speed and high volume. Classifying data streams faces the three challenges of unlimited length, online processing, and concept drift. In related research, to meet the challenge of unlimited stream length, commonly the stream is divided into fixed size windows or gradual forgetting is used. Concept drift refer...
متن کاملDetecting Distributed Denial of Service (DDoS) Attacks through Inductive Learning
As the complexity of Internet is scaled up, it is likely for the Internet resources to be exposed to Distributed Denial of Service (DDoS) flooding attacks on TCP-based Web servers. There has been a lot of related work which focuses on analyzing the pattern of the DDoS attacks to protect users from them. However, none of these studies takes all the flags within TCP header into account, nor do th...
متن کاملDetecting Distributed Denial of Service Attacks Using Data Mining Techniques
Users and organizations find it continuously challenging to deal with distributed denial of service (DDoS) attacks. . The security engineer works to keep a service available at all times by dealing with intruder attacks. The intrusiondetection system (IDS) is one of the solutions to detecting and classifying any anomalous behavior. The IDS system should always be updated with the latest intrude...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: IAES International Journal of Artificial Intelligence
سال: 2022
ISSN: ['2089-4872', '2252-8938']
DOI: https://doi.org/10.11591/ijai.v11.i3.pp1094-1100