DDoS Attack Detection Using Machine Learning Techniques

Rituparna Borah; Satyajit Sarmah; Nitin Choudhury; Hriman Mahanta; Anjan Chodhury

doi:10.17485/IJST/v16iSP2.9526

Article

DDoS Attack Detection Using Machine Learning Techniques

VIEWS 305
PDF 81

Indian Journal of Science and Technology

DOI: 10.17485/IJST/v16iSP2.9526

Year: 2023, Volume: 16, Issue: Special Issue 2, Pages: 76-82

Original Article

DDoS Attack Detection Using Machine Learning Techniques

Rituparna Borah¹, Satyajit Sarmah^1*, Nitin Choudhury¹, Hriman Mahanta¹, Anjan Chodhury¹

¹Department of Information Technology, Gauhati University, Guwahati, Assam, India

*Corresponding Author
Email: [email protected]

Received Date:23 March 2023, Accepted Date:26 June 2023, Published Date:02 November 2023

This work is licensed under a Creative Commons Attribution 4.0 International License.

Abstract

Network Traffic analysis is an important part of network security. With the increase in the usage of internet, new kinds of network security threats are becoming prominent. One of the biggest threats to it is the Distributed Denial of Service (DDoS) attack. Objective: The primary objective of our work is to create a DDoS dataset and to classify the attack based on its behavioural analysis. Methods: For creating a DDoS dataset, a proper virtual lab environment is set-up. After setting up the environment and virtual network, DDoS attack is performed on the victim machine and the network traffics are captured. Along with the DDoS data, benign network traffics are captured as well. After creating the dataset, different features are extracted from the network traffics and finally used different Machine Learning approach for classifying the features whether the traffics are benign traffics or DDoS traffics. Findings: From the experimental result, it is clear that the proposed method can create DDoS traffic and classify different types of DDoS attacks in an efficient manner. From the result analysis, it is seen that the KNN clustering algorithm performs better classifications than the other machine learning algorithms. Novelty: The primary novelty in the proposed work is about the dataset that has been created. The DDoS dataset that is used in the proposed work is heterogeneous. The dataset includes DDoS traffics from both the global internet and local network. On this data, among most of the primary machine learning algorithms, Random Forest and K-Nearest Neighbour Classifier performs better with classification accuracy of 99.44% and 99.58%.

References

Chen J, Breen J, Phillips JM, Merwe JVD. Practical and configurable network traffic classification using probabilistic machine learning. Cluster Computing. 2022;25:2839–2853. Available from: https://doi.org/10.1007/s10586-021-03393-2
Fowdur TP, Baulum BN, Beeharry Y. Performance analysis of network traffic capture tools and machine learning algorithms for the classification of applications, states and anomalies. International Journal of Information Technology. 2020;12:805–824. Available from: https://doi.org/10.1007/s41870-020-00458-0
Mane P, Parkar Y, Patel J, Sanghavi V, Walanje A. Traffic Classification Using Machine Learning. In: 2nd International Conference on Advances in Science & Technology (ICAST-2019). Mumbai, India, 8th-9th April 2019. K J Somaiya Institute of Engineering & Information Technology. p. 1–4.
Aouedi O, Piamrat K, Parrein B. Performance evaluation of feature selection and tree-based algorithms for traffic classification. In: 2021 IEEE International Conference on Communications Workshops (ICC Workshops). Montreal, QC, Canada, 14-23 June 2021. IEEE. .
Ghasemi M, Saadaat M, Ghollasi O. Threats of social engineering attacks against security of Internet of Things (IoT): the selected papers of the ﬁrst international conference on fundamental research in electrical engineering. In: Fundamental Research in Electrical Engineering, Lecture Notes in Electrical Engineering. (Vol. 480, pp. 957-968) Singapore. Springer. 2019.
Soe YN, Santosa PI, Hartanto R. DDoS Attack Detection Based on Simple ANN with SMOTE for IoT Environment. In: 2019 Fourth International Conference on Informatics and Computing (ICIC). Semarang, Indonesia, 16-17 October 2019. IEEE. .
Pei J, Chen Y, Ji W. A DDoS Attack Detection Method Based on Machine Learning. In: Journal of Physics: Conference Series. IOP Publishing. 1237:1–6.
Ali TE, Chong YW, Manickam S. Machine Learning Techniques to Detect a DDoS Attack in SDN: A Systematic Review. Applied Sciences. 2023;13(5):1–27.
Kumari K, Mrunalini M. Detecting Denial of Service attacks using machine learning algorithms. Journal of Big Data. 2022;9(56):1–17. Available from: https://doi.org/10.1186/s40537-022-00616-0
Devi RR, Abualkibash M. Intrusion Detection System Classification Using Different Machine Learning Algorithms on KDD-99 and NSL-KDD Datasets - A Review Paper. International Journal of Computer Science and Information Technology. 2019;11(03):65–80. Available from: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=3428211

Copyright

© 2023 Borah et al. This is an open-access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited. Published By Indian Society for Education and Environment (iSee)