{"title":"DDoS Attack Traffic Identification Using Recurrent Neural Network","authors":"Yu Li, Hao Shi, Mingyu Fan","doi":"10.1109/SLAAI-ICAI54477.2021.9664685","DOIUrl":null,"url":null,"abstract":"Cyber security plays a very important role in all walks of our life, especially in information industries. We all know, there are a lot of cyber attacks in network. Among all, DDoS attacks are more common and harmful than other types. Nowadays, with the rapid development of distributed computing technologies, cloud technologies and Internet, the scope of DDoS attacks is increased. These DDoS attacks are of different types like denial of service, distributed denial of service, Slowloris, and so on. We know that there are a number of technologies to detect the attacks, and the most popular way is machine learning. In this paper, we propose a recurrent neural network-based solution for DDoS attack traffic flow detection. This solution can be used for online intrusion detection systems and intrusion prevention systems. Firstly, we need to collect dataset. Due to the lack of reliable test and validation datasets, the existing datasets illustrate that most of them are out of date and useless, we use DDoS 2019 dataset for our experiment. Secondly, we extract features by CICFlowMeter tool. Thirdly, the extracted features are converted into grayscale images by a certain algorithm. Finally, the grayscale images are used as input to the RNN classifier. Regardless of a feature appears in the image, through RNN classifier, we will get the same output, this is a fundamental and most important benefit of RNN classifiers. With this implementation, we can achieve an accuracy of 99.95%.","PeriodicalId":252006,"journal":{"name":"2021 5th SLAAI International Conference on Artificial Intelligence (SLAAI-ICAI)","volume":"42 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-12-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 5th SLAAI International Conference on Artificial Intelligence (SLAAI-ICAI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SLAAI-ICAI54477.2021.9664685","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
Cyber security plays a very important role in all walks of our life, especially in information industries. We all know, there are a lot of cyber attacks in network. Among all, DDoS attacks are more common and harmful than other types. Nowadays, with the rapid development of distributed computing technologies, cloud technologies and Internet, the scope of DDoS attacks is increased. These DDoS attacks are of different types like denial of service, distributed denial of service, Slowloris, and so on. We know that there are a number of technologies to detect the attacks, and the most popular way is machine learning. In this paper, we propose a recurrent neural network-based solution for DDoS attack traffic flow detection. This solution can be used for online intrusion detection systems and intrusion prevention systems. Firstly, we need to collect dataset. Due to the lack of reliable test and validation datasets, the existing datasets illustrate that most of them are out of date and useless, we use DDoS 2019 dataset for our experiment. Secondly, we extract features by CICFlowMeter tool. Thirdly, the extracted features are converted into grayscale images by a certain algorithm. Finally, the grayscale images are used as input to the RNN classifier. Regardless of a feature appears in the image, through RNN classifier, we will get the same output, this is a fundamental and most important benefit of RNN classifiers. With this implementation, we can achieve an accuracy of 99.95%.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
