A survey of defense mechanisms against application layer distributed denial of service attacks

Wang, Yadong; Liu, Lianzhong; Sun, Bo; Li, Yingbo

doi:10.1109/icsess.2015.7339229

Cited by 9 publications

(6 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…e Smart Detection system has reached high accuracy and low false-positive rate. Experiments were conducted using two Virtual Linux boxes, Define all the descriptor database variables as the current variables; (5) while True do (6) Split dataset in training and test partitions; (7) Create and train the model using training data partition; (8) Select the most important variables from the trained model; (9) Calculate the cumulative importance of variables from the trained model; (10) if max (cumulative importance of variables) < Variable importance threshold then (11) Exit loop; (12) end (13) Train the model using only the most important variables; (14) Test the trained model and calculate the accuracy; (15) if Calculated accuracy < Accuracy threshold then (16) Exit loop; (17) end (18) Add current model to optimized model set; (19) Define the most important variables from the trained model as the current variables; (20) end (21) end (22) Group the models by number of variables; (23) Remove outliers from the grouped model set; (24) Select the group of models with the highest frequency and their number of variables "N"; (25) Rank the variables by the mean of the importance calculated in step 7; (26) Return the "N" most important variables; [2004][2005] have been used by the researchers to evaluate the performance of their proposed intrusion detection and prevention approaches. However, many such datasets are out of date and unreliable to use [25].…”

Section: Resultsmentioning

confidence: 99%

“…have been under study in both the scientific community and industry for several years. e related literature reveals that several studies have undertaken to propose solutions to deal with this problem in a general way [6,[11][12][13][14][15]. Another group of works dedicated themselves to presenting specific solutions for high-volume and low-volume DDoS attacks [8,13,16].…”

Section: Problem Statements Ddos Detection and Mitigationmentioning

confidence: 99%

See 1 more Smart Citation

Smart Detection: An Online Approach for DoS/DDoS Attack Detection Using Machine Learning

Filho

Silveira

Júnior

et al. 2019

Security and Communication Networks

186

View full text Add to dashboard Cite

Users and Internet service providers (ISPs) are constantly affected by denial-of-service (DoS) attacks. This cyber threat continues to grow even with the development of new protection technologies. Developing mechanisms to detect this threat is a current challenge in network security. This article presents a machine learning- (ML-) based DoS detection system. The proposed approach makes inferences based on signatures previously extracted from samples of network traffic. The experiments were performed using four modern benchmark datasets. The results show an online detection rate (DR) of attacks above 96%, with high precision (PREC) and low false alarm rate (FAR) using a sampling rate (SR) of 20% of network traffic.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Problem Statements Ddos Detection and Mitigationmentioning

confidence: 99%

Smart Detection: An Online Approach for DoS/DDoS Attack Detection Using Machine Learning

Filho

Silveira

Júnior

et al. 2019

Security and Communication Networks

186

View full text Add to dashboard Cite

show abstract

“…They reported in their studies that hybrid techniques received a great deal of attention from researchers in detecting the APDDoS attack. Wang et al 38 further review various APDDoS detection methods and classified them into two categories with the perspective of differentiating between the two categories based on four aspects, namely the deployment difficulty, anomaly detection rate, false acceptance rate, and false rejection rate. This study, to the best of our knowledge, is the first to provide a detailed review of APDDoS attack detection based on different procedures, namely techniques/methods, attack strategy, status, and features exploration.…”

Section: Research Findings Current Issues and Comparison With Othermentioning

confidence: 99%

A survey and meta‐analysis of application‐layer distributed denial‐of‐service attack

Odusami

Misra

Abayomi‐Alli

et al. 2020

Int J Communication

View full text Add to dashboard Cite

SummaryBackgroundOne of the significant attacks targeting the application layer is the distributed denial‐of‐service (DDoS) attack. It degrades the performance of the server by usurping its resources completely, thereby denying access to legitimate users and causing losses to businesses and organizations.AimThis study aims to investigate existing methodologies for application‐layer DDoS (APDDoS) attack defense by using specific measures: detection methods/techniques, attack strategy, and feature exploration of existing APDDoS mechanisms.MethodologyThe review is carried out on a database search of relevant literature in IEEE Xplore, ACM, Science Direct, Springer, Wiley, and Google Search. The search dates to capture journals and conferences are from 2000 to 2019. Review papers that are not in English and not addressing the APDDoS attack are excluded. Three thousand seven hundred eighty‐nine studies are identified and streamlined to a total of 75 studies. A quantifiable assessment is performed on the selected articles using six search procedures, namely: source, methods/technique, attack strategy, datasets/corpus, status, detection metric, and feature exploration.ResultsBased on existing methods/techniques for detection, the results show that machine learning gave the highest proportion with 36%. However, assessment based on attack strategy shows that several studies do not consider an attack form for deploying their solution. Result based on existing features for the APDDoS detection technique shows request stream during a user session and packet pattern gave the highest result with 47%. Unlike packet header information with 33%, request stream during absolute time interval with 12% and web user features 8%.ConclusionResearch findings show that a large proportion of the solutions for APDDoS attack detection utilized features based on request stream during user session and packet pattern. The optimization of features will improve detection accuracy. Our study concludes that researchers need to exploit all attack strategies using deep learning algorithms, thus enhancing effective detection of APDDoS attack launch from different botnets.

show abstract

“…O ataque de negação de serviço distribuído, comumente referenciado como DDoS (Distributed Denial of Service), é uma variação do ataque tradicional de negação de serviço. Esta variação do ataque emprega de forma coordenada uma grande quantidade de dispositivos previamente infectados para intensificar o poder disruptivo do ataque e dificultar a identificação do atacante [Wang et al 2015, Paxson 2001]. Usualmente, os atacantes utilizam dispositivos interconectados através de infraestruturas conhecidas como botnets para executar ataques DDoS.…”

Section: Ataques De Negação De Serviçounclassified

“…Existem quatro principais tipos de ataques DDoS baseados em geração de carga HTTP, inundação de sessão, inundação de requisições, assimétricos e com requisições e/ou respostas lentos [Wang et al 2015]. Nos ataques DDoS de inundação de sessão as taxas de requisição de conexão de sessão dos atacantes são maiores que as requisições dos usuários legítimos.…”

Section: Escopo E Classificaçãounclassified

Ameaças de Segurança, Defesas e Análise de Dados em IoT Baseada em SDN

Prates¹,

Pelloso²,

Macedo³

et al. 2018

Minicursos Do XVIII Simpósio Brasileiro De Segurança Da Informação E De Sistemas Computacionais

View full text Add to dashboard Cite

A survey of defense mechanisms against application layer distributed denial of service attacks

Cited by 9 publications

References 13 publications

Smart Detection: An Online Approach for DoS/DDoS Attack Detection Using Machine Learning

Smart Detection: An Online Approach for DoS/DDoS Attack Detection Using Machine Learning

A survey and meta‐analysis of application‐layer distributed denial‐of‐service attack

Ameaças de Segurança, Defesas e Análise de Dados em IoT Baseada em SDN

Contact Info

Product

Resources

About