Abstract
With the rapid development of network technology, network security is facing serious problems. Distributed Denial of Service (DDoS) attack is one of the most difficult security threats to guard against. In this paper, we propose a DDoS detection method based on improved generalized entropy. The model includes a preliminary detection module based on improved generalized entropy and a DDoS detector based on deep neural networks (DNN). The preliminary detection module filters as much normal traffic as possible while ensuring the accuracy of the model by calculating the generalized entropy threshold of the traffic. The DNN-based DDoS detector takes the filtered data as input and detects DDoS attacks more accurately. The experimental results show that the method achieves more than 99% accuracy, precision, and recall on the dataset of this paper.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Liu, Jian, Purui, Su., Yang, Min, He, Liang, Zhang, Yuan, Zhu, Xueyang, Lin, Huimin: Software and cyber securityāa survey. J. Softw. 29(1), 42ā68 (2018)
Wang, A., Chang, W., Chen, S., Mohaisen, A.: Delving into internet DDoS attacks by botnets. IEEE/ACM Trans. Networking (TON) 26(6), 2843ā2855 (2018)
Liu, X., Ren, J., He, H., et al.: Low-rate DDoS attacks detection method using data compression and behavior divergence measurement. Comput. Secur. 100, 102107 (2021)
Luo, W., Cheng, J.: Hybrid DDoS attack distributed detection system based on hadoop architecture. Netinfo Secur. 21(2), 61ā69 (2021)
Chen, M., Chen, J., Wei, X., et al.: Is low-rate distributed denial of service a great threat to the internet. IET Inf. Secur. 15(5), 351ā363 (2021)
Tang, D., Feng, Y., Zhang, S., et al.: Fr-red: fractal residual based real-time detection of the LDoS attack. IEEE Trans. Reliab. 70(3), 1143ā1157 (2021)
Yuhua, X., Sun, Z.: Research development of abnormal traffic detection in software defined networking. J. Softw. 31(01), 183ā207 (2020)
Ding, D., Savi, M., Siracusa, D.: Tracking normalized network traffic entropy to detect DDoS attacks in P4. IEEE Trans. Dependable Secure Comput 1ā1 (2021)
Giray, G.: A software engineering perspective on engineering machine learning systems: state of the art and challenges. J. Syst. Softw. 180, 111031 (2021)
Tang, D., Tang, L., Dai, R., et al.: MF-adaboost: LDoS attack detection based on multi-features and improved adaboost. Future Gener. Comput. Syst. 106, 347ā359 (2020)
Nazih. W., Hifny, Y., Elkilani, W.S., et al.: Countering DDoS attacks in SIP based VoIP networks using recurrent neural networks. Sensors 20(20), 5875 (2020)
Alekseev, I.V.: Detection of distributed denial of service attacks in large-scale networks based on methods of mathematical statistics and artificial intelligence. Autom. Control Comput. Sci. 54(8), 952ā957 (2020)
Zhao, S., Chen, S.: Review: traffic identification based on machine learning. Comput. Eng. Sci. 40(10), 1746ā1756 (2018)
Haghighat, M.H., Jun, L.: Intrusion detection system using voting-based neural network. Tsinghua Sci. Technol. 26(4), 484ā495 (2021)
Xiang, Y., Li, K., Zhou, W.: Low-rate DDoS attacks detection and traceback by using new information metrics. IEEE Trans. Inf. Forensics Secur. 6(2), 426ā437 (2011)
CSE-CIC-IDS2018 on AWS. https://www.unb.ca/cic/datasets/ids-2018.html. Accessed 10 June 2022
Intrusion Detection Evaluation Dataset (CIC-IDS2017). https://www.unb.ca/cic/datasets/ids-2017.html. Accessed 10 June 2022
Acknowledgement
This work is supported by the National Natural Science Foundation of China (Grant No.62072109, and No.U1804263), the Natural Science Foundation of Fujian Province(Grant No.2021J01625, No.2021J01616), Major Science and Technology project of Fujian Province(Grant No.2021HZ0115).
Author information
Authors and Affiliations
Corresponding authors
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
Ā© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Li, J., Yang, X., Chen, H., Lin, H., Chen, X., Liu, Y. (2023). DDoS Detection Method Based onĀ Improved Generalized Entropy. In: Xiong, N., Li, M., Li, K., Xiao, Z., Liao, L., Wang, L. (eds) Advances in Natural Computation, Fuzzy Systems and Knowledge Discovery. ICNC-FSKD 2022. Lecture Notes on Data Engineering and Communications Technologies, vol 153. Springer, Cham. https://doi.org/10.1007/978-3-031-20738-9_59
Download citation
DOI: https://doi.org/10.1007/978-3-031-20738-9_59
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-20737-2
Online ISBN: 978-3-031-20738-9
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)