Skip to main content
SpringerLink
Log in

Distributed Denial of Service Attack Detection Using Machine Learning and Class Oversampling

  • Conference paper
  • First Online:
Applied Intelligence and Informatics (AII 2021)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 1435))

Included in the following conference series:

Abstract

Distributed Denial of Services (DDoS) attack, one of the most dangerous types of cyber attack, has been reported to increase during the COVID-19 pandemic. Machine learning techniques have been proposed in the literature to build models to detect DDoS attacks. Existing works in literature tested their models with old datasets where DDoS attacks are not specific. These works mainly focus on detecting the presence of an attack rather than the type of DDoS attacks. However, detection of the attack type is vital for the review and analysis of enterprise-level security policy. Cyber-attacks are inherently an imbalanced data problem, but none of the models treated DDoS attack detection from this perspective. In this work, we present a machine learning model that takes the imbalance nature of the DDoS attack data into consideration for both presence/absence and the type of DDoS attack detection. Extensive experiment analysis with the recent and DDoS attack-specific dataset shows that the proposed technique can effectively identify DDoS attacks.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 79.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 99.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Chowdhury, A.: Recent cyber security attacks and their mitigation approaches – an overview. In: Batten, L., Li, G. (eds.) ATIS 2016. CCIS, vol. 651, pp. 54–65. Springer, Singapore (2016). https://doi.org/10.1007/978-981-10-2741-3_5

    Chapter  Google Scholar 

  2. Kaspersky DDoS attack report. https://securelist.com/ddos-attacks-in-q2-2020/98077/. Accessed 19 Mar 2021

  3. Kasim, O.: An efficient and robust deep learning based network anomaly detection against distributed denial of service attacks. Comput. Netw. 180, 107390 (2020)

    Article  Google Scholar 

  4. Kushwah, G.S., Ranga, V.: Voting extreme learning machine based distributed denial of service attack detection in cloud computing. J. Inf. Secur. Appl. 53, 102532 (2020)

    Google Scholar 

  5. Kushwah, G.S., Ali, S.T.: Distributed denial of service attacks detection in cloud computing using extreme learning machine. Int. J. Commun. Netw. Distrib. Syst. 23(3), 328–351 (2019)

    Google Scholar 

  6. Sahi, A., Lai, D., Li, Y., Diykh, M.: An efficient DDoS TCP flood attack detection and prevention system in a cloud environment. IEEE Access 5, 6036–6048 (2017)

    Google Scholar 

  7. Maranhao, J.P.A., et al.: Tensor based framework for distributed denial of service attack detection. J. Netw. Comput. Appl. 174, 102894 (2021)

    Article  Google Scholar 

  8. Aamir, M., Zaidi, S.M.A.: Clustering based semi-supervised machine learning for DDoS attack classification. J. King Saud Univ.-Comp. Info. Sci. (2019)

    Google Scholar 

  9. Kachavimath, A., Nazare, S.V., Akki, S.S.: Distributed denial of service attack detection using Naive Bayes and K-Nearest Neighbor for network forensics. In: Conference of ICIMIA, pp. 711–717. IEEE, Bangalore (2020)

    Google Scholar 

  10. Chawla, N.V., Bowyer, K.W., Hall, L.O., Kegelmeyer, W.P.: SMOTE: synthetic minority over-sampling technique. J. Artif. Intell. Res. 16, 321–357 (2002)

    Article  Google Scholar 

  11. Vapnik, V.N.: The Nature of Statistical Learning Theory. Springer, New York (1995). https://doi.org/10.1007/978-1-4757-2440-0

    Book  MATH  Google Scholar 

  12. Quinlan, J.R.: C4.5: programs for machine learning. vol. 1, Morgan Kaufmann, San Francisco (1993)

    Google Scholar 

  13. Breiman, L.: Random forests. J. Mach. Learn. 45(1), 5–32 (2001). https://doi.org/10.1023/A:1010933404324

    Article  MATH  Google Scholar 

  14. Rumelhart, D.E., McClelland, J.L. and PDP Research Group: Parallel Distributed Processing, vol. 1, MIT Press (1986)

    Google Scholar 

  15. Rashid, M.M., Kamruzzaman, J., Hassan, M.M., Imam, T., Gordon, S.: Cyberattacks detection in IoT-based smart city applications using machine learning techniques. Int. J. Environ. Res. Public Health 17(24), 9347 (2020)

    Article  Google Scholar 

  16. Mahmud, M., Kaiser, M.S., McGinnity, T.M., Hussain, A.: Deep learning in mining biological data. Cogn. Comput. 13(1), 1–33 (2021). https://doi.org/10.1007/s12559-020-09773-x

    Article  Google Scholar 

  17. Mahmud, M., Kaiser, M.S., Hussain, A., Vassanelli, S.: Applications of deep learning and reinforcement learning to biological data. IEEE Trans. Neural Netw. Learn. Syst. 29(6), 2063–2079 (2018)

    Article  MathSciNet  Google Scholar 

  18. Khoda, M.E., Imam, T., Kamruzzaman, J., Gondal, I., Rahman, A.: Robust malware defense in industrial IoT applications using machine learning with selective adversarial samples. IEEE Trans. Ind. Appl. 56(4), 4415–4424 (2019)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Islamic University of Technology (IUT), Gazipur, Bangladesh

    Sakib Shahriar Shafin, Sakir Adnan Prottoy, Saif Abbas & Safayat Bin Hakim

  2. Federation University Australia, Ballarat, Australia

    Abdullahi Chowdhury

  3. Central Queensland University, Rockhampton, Australia

    Md. Mamunur Rashid

Authors
  1. Sakib Shahriar Shafin
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Sakir Adnan Prottoy
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Saif Abbas
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Safayat Bin Hakim
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Abdullahi Chowdhury
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Md. Mamunur Rashid
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Abdullahi Chowdhury .

Editor information

Editors and Affiliations

  1. Nottingham Trent University, Nottingham, UK

    Mufti Mahmud

  2. Jahangirnagar University, Savar, Dhaka, Bangladesh

    M. Shamim Kaiser

  3. Auckland University of Technology, Auckland, New Zealand

    Nikola Kasabov

  4. Old Dominion University, Norfolk, VA, USA

    Khan Iftekharuddin

  5. Maebashi Institute of Technology, Maebashi, Japan

    Ning Zhong

Rights and permissions

Reprints and permissions

Copyright information

© 2021 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Shafin, S.S., Prottoy, S.A., Abbas, S., Hakim, S.B., Chowdhury, A., Rashid, M.M. (2021). Distributed Denial of Service Attack Detection Using Machine Learning and Class Oversampling. In: Mahmud, M., Kaiser, M.S., Kasabov, N., Iftekharuddin, K., Zhong, N. (eds) Applied Intelligence and Informatics. AII 2021. Communications in Computer and Information Science, vol 1435. Springer, Cham. https://doi.org/10.1007/978-3-030-82269-9_19

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-82269-9_19

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-82268-2

  • Online ISBN: 978-3-030-82269-9

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation