A Big Data and machine learning approach for network monitoring and security

Maccari, Leonardo; Passerini, Andrea

doi:10.1002/spy2.53

Cited by 5 publications

(1 citation statement)

References 42 publications

(62 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It is used to extract knowledge and relative patterns from the large dataset for predictive analysis [11,28,33]. The tremendous volume of existing and recently appearing network data influenced researchers to use data mining technologies to investigate attacks [16,17,21,23,32]. Currently, various researchers are continuing to develop an effective IDS system for DDoS using a machine learning algorithm [1,3,6,8,12,19,22,30].…”

Section: Introductionmentioning

confidence: 99%

Predictive machine learning-based integrated approach for DDoS detection and prevention

Kebede

Tiwari

et al. 2021

Multimed Tools Appl

View full text Add to dashboard Cite

Distributed Denial of Service attack has been a huge threat to the Internet and may carry extreme losses to systems, companies, and national security. The invader can disseminate Distributed denial of service (DDoS) attacks easily, and it ends up being significantly harder to recognize and forestall DDoS attacks. In recent years, many ITbased companies are attacked by DDoS attacks. In this view, the primary concern of this work is to detect and prevent DDoS attacks. To fulfill the objective, various data mining techniques such that Jrip, J48, and k-NN have been employed for DDoS attacks detection. These algorithms are implemented and thoroughly evaluated individually to validate their performance in this domain. The presented work has been evaluated using the latest dataset CICIDS2017. The dataset characterizes different DDoS attacks viz. brute force SSH, brute force FTP, Heartbleed, infiltration, botnet TCP, UDP, and HTTP with port scan attack. Further, the prevention method takes place in progress to block the malicious nodes participates in any of the said attacks. The proposed DDoS prevention works in a proactive mode to defend all these attack types and gets evaluated concerning various parameters such as Throughput, PDR, End-to-End Delay, and NRL. This study claimed that the proposed technique outperforms with respect to the AODV routing algorithm.

show abstract