{"title":"Performance Evaluation of Machine Learning Algorithms for Detection of SYN Flood Attack","authors":"Wassihun Beyene W. Mariam, Y. Negash","doi":"10.1109/africon51333.2021.9570968","DOIUrl":null,"url":null,"abstract":"One of the main security problems that become the hardest and most serious threat is called Distributed Denial of Service (DDoS) attacks specifically Synchronize (SYN) flood attack. This research focused on the performance evaluation of classification machine learning (ML) algorithms for SYN flood attack detection. The classification models are trained and tested with packet captured dataset gathered from ethio telecom network by generating and capturing packets using Hping3 and Wireshark tools respectively. This dataset has been further preprocessed and evaluated using four classification ML algorithms and three training approaches. The implementation has been performed using WAKA (Waikato Environment for Knowledge Analysis) data mining tool. The experimental results show that the J48 algorithm performs with 98.57% accuracy and AdaBoost, Naïve Bayes and ANN algorithms with 98.52%, 95.31% and 94.85% accuracy respectively. Accordingly based on the performance a model with the J48 algorithm has been recommended for SYN attack detection.","PeriodicalId":170342,"journal":{"name":"2021 IEEE AFRICON","volume":"186 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-09-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE AFRICON","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/africon51333.2021.9570968","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 3
Abstract
One of the main security problems that become the hardest and most serious threat is called Distributed Denial of Service (DDoS) attacks specifically Synchronize (SYN) flood attack. This research focused on the performance evaluation of classification machine learning (ML) algorithms for SYN flood attack detection. The classification models are trained and tested with packet captured dataset gathered from ethio telecom network by generating and capturing packets using Hping3 and Wireshark tools respectively. This dataset has been further preprocessed and evaluated using four classification ML algorithms and three training approaches. The implementation has been performed using WAKA (Waikato Environment for Knowledge Analysis) data mining tool. The experimental results show that the J48 algorithm performs with 98.57% accuracy and AdaBoost, Naïve Bayes and ANN algorithms with 98.52%, 95.31% and 94.85% accuracy respectively. Accordingly based on the performance a model with the J48 algorithm has been recommended for SYN attack detection.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
