A Recommender System to Detect Distributed Denial of Service Attacks with Network and Transport Layer Features

Kağan Özgün; Ayşe Tosun; Mehmet Tahir Sandıkkaya

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

A Recommender System to Detect Distributed Denial of Service Attacks with Network and Transport Layer Features

Topics: AI and Machine Learning for Security; Intrusion Detection and Response; Privacy and Security Models; Security Architecture and Design Analysis; Web Applications and Services

In Proceedings of the 10th International Conference on Information Systems Security and Privacy ICISSP - Volume 1, 390-397, 2024 , Rome, Italy

Authors: Kağan Özgün ; Ayşe Tosun and Mehmet Tahir Sandıkkaya

Affiliation: Department of Computer Engineering, Istanbul Technical University, Istanbul, Turkey

Keyword(s): Distributed Denial of Service Attacks, Network Traffic, Attack Detection, LSTM, Gaussian Naive Bayes.

Abstract: Detecting Distributed Denial of Service (DDoS) attacks are crucial for ensuring the security of applications and computer networks. The ability to mitigate potential attacks before they happen could significantly reduce security costs. This study aims to address two research questions concerning the early detection of DDoS attacks. First, we explore the feasibility of detecting DDoS attacks in advance using machine learning approaches. Second, we focus on whether DDoS attacks could be successfully detected using a Long Short-Term Memory (LSTM) based approach. We have developed rule-based, Gaussian Naive Bayes (GNB), and LSTM models that were trained and assessed on two datasets, namely UNSW-NB15 and CIC-DDoS2019. The results of the experiments show that 82–99% of DDoS attacks can be successfully detected 300 seconds prior to their arrival using both GNB and LSTM models. The LSTM model, on the other hand, is significantly better at distinguishing attacks from benign packets. Additiona lly, incident response teams could utilize a two-level alert mechanism that ranks the attack detection results, and take actions such as blocking the traffic before the attack occurs if our proposed system generates a high risk alert. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.119.126.72

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Özgün, K., Tosun, A. and Tahir Sandıkkaya, M. (2024). A Recommender System to Detect Distributed Denial of Service Attacks with Network and Transport Layer Features. In Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-683-5; ISSN 2184-4356, SciTePress, pages 390-397. DOI: 10.5220/0012350100003648

@conference{icissp24,
author={Kağan Özgün and Ayşe Tosun and Mehmet {Tahir Sandıkkaya}},
title={A Recommender System to Detect Distributed Denial of Service Attacks with Network and Transport Layer Features},
booktitle={Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP},
year={2024},
pages={390-397},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012350100003648},
isbn={978-989-758-683-5},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP
TI - A Recommender System to Detect Distributed Denial of Service Attacks with Network and Transport Layer Features
SN - 978-989-758-683-5
IS - 2184-4356
AU - Özgün, K.
AU - Tosun, A.
AU - Tahir Sandıkkaya, M.
PY - 2024
SP - 390
EP - 397
DO - 10.5220/0012350100003648
PB - SciTePress