Battling Against DDoS in SIP - Is Machine Learning-based Detection an Effective Weapon?

Z. Tsiatsikas; A. Fakis; D. Papamartzivanos; D. Geneiatakis; G. Kambourakis; C. Kolias

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Battling Against DDoS in SIP - Is Machine Learning-based Detection an Effective Weapon?

Topics: Intrusion Detection & Prevention; Network Security

In Proceedings of the 12th International Conference on Security and Cryptography - Volume 0ICETE, 301-308, 2015 , Colmar, Alsace, France

Authors: Z. Tsiatsikas ¹ ; A. Fakis ¹ ; D. Papamartzivanos ¹ ; D. Geneiatakis ² ; G. Kambourakis ¹ and C. Kolias ³

Affiliations: ¹ University of the Aegean, Greece ; ² Aristotle University of Thessaloniki, Greece ; ³ George Mason University, United States

Keyword(s): Session Initiation Protocol, Machine Learning, DDoS, Anomaly-detection, Intrusion Detection Systems.

Related Ontology Subjects/Areas/Topics: Information and Systems Security ; Intrusion Detection & Prevention ; Network Security ; Wireless Network Security

Abstract: This paper focuses on network anomaly-detection and especially the effectiveness of Machine Learning (ML) techniques in detecting Denial of Service (DoS) in SIP-based VoIP ecosystems. It is true that until now several works in the literature have been devoted to this topic, but only a small fraction of them have done so in an elaborate way. Even more, none of them takes into account high and low-rate Distributed DoS (DDoS) when assessing the efficacy of such techniques in SIP intrusion detection. To provide a more complete estimation of this potential, we conduct extensive experimentations involving 5 different classifiers and a plethora of realistically simulated attack scenarios representing a variety of (D)DoS incidents. Moreover, for DDoS ones, we compare our results with those produced by two other anomaly-based detection methods, namely Entropy and Hellinger Distance. Our results show that ML-powered detection scores a promising false alarm rate in the general case, and seems t o outperform similar methods when it comes to DDoS. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.219.47.239

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Tsiatsikas, Z.; Fakis, A.; Papamartzivanos, D.; Geneiatakis, D.; Kambourakis, G. and Kolias, C. (2015). Battling Against DDoS in SIP - Is Machine Learning-based Detection an Effective Weapon?. In Proceedings of the 12th International Conference on Security and Cryptography (ICETE 2015) - SECRYPT; ISBN 978-989-758-117-5; ISSN 2184-3236, SciTePress, pages 301-308. DOI: 10.5220/0005549103010308

@conference{secrypt15,
author={Z. Tsiatsikas. and A. Fakis. and D. Papamartzivanos. and D. Geneiatakis. and G. Kambourakis. and C. Kolias.},
title={Battling Against DDoS in SIP - Is Machine Learning-based Detection an Effective Weapon?},
booktitle={Proceedings of the 12th International Conference on Security and Cryptography (ICETE 2015) - SECRYPT},
year={2015},
pages={301-308},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005549103010308},
isbn={978-989-758-117-5},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the 12th International Conference on Security and Cryptography (ICETE 2015) - SECRYPT
TI - Battling Against DDoS in SIP - Is Machine Learning-based Detection an Effective Weapon?
SN - 978-989-758-117-5
IS - 2184-3236
AU - Tsiatsikas, Z.
AU - Fakis, A.
AU - Papamartzivanos, D.
AU - Geneiatakis, D.
AU - Kambourakis, G.
AU - Kolias, C.
PY - 2015
SP - 301
EP - 308
DO - 10.5220/0005549103010308
PB - SciTePress