{"title":"An Efficient DDoS Attack Detection in SDN using Multi-Feature Selection and Ensemble Learning","authors":"Amit V Kachavimath , Narayan D G","doi":"10.1016/j.procs.2024.12.026","DOIUrl":null,"url":null,"abstract":"<div><div>Software-defined networking (SDN) has significantly enhanced network agility by decoupling network control from hardware devices. This architectural shift exposes SDN infrastructures to increased risks from Distributed Denial of Service (DDoS) attacks, which can severely disrupt network services and render them unavailable to legitimate users. Despite the existence of various techniques for detecting specific types of DDoS attacks, there remains a need for more comprehensive work capable of accurately identifying multiple attack categories. We have addressed the gap by proposing a robust DDoS attack detection method in the SDN. We utilize advanced machine learning (ML) algorithms to analyze the InSDN dataset, employing advanced feature extraction techniques to improve detection accuracy and efficiency. Three feature extraction methods, Se-lectKBest, ANOVA F-value scores, and feature importance scores from RandomForest Classifier, were used to select the best ten features from 81. This feature selection, combined with ensemble learning, achieved an accuracy of 99.9%. The Receiver Operating Characteristic (ROC) curve, confusion matrix, and K-fold cross-validation were used to evaluate the performance of the proposed model.</div></div>","PeriodicalId":20465,"journal":{"name":"Procedia Computer Science","volume":"252 ","pages":"Pages 241-250"},"PeriodicalIF":0.0000,"publicationDate":"2025-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Procedia Computer Science","FirstCategoryId":"1085","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1877050924034586","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
Software-defined networking (SDN) has significantly enhanced network agility by decoupling network control from hardware devices. This architectural shift exposes SDN infrastructures to increased risks from Distributed Denial of Service (DDoS) attacks, which can severely disrupt network services and render them unavailable to legitimate users. Despite the existence of various techniques for detecting specific types of DDoS attacks, there remains a need for more comprehensive work capable of accurately identifying multiple attack categories. We have addressed the gap by proposing a robust DDoS attack detection method in the SDN. We utilize advanced machine learning (ML) algorithms to analyze the InSDN dataset, employing advanced feature extraction techniques to improve detection accuracy and efficiency. Three feature extraction methods, Se-lectKBest, ANOVA F-value scores, and feature importance scores from RandomForest Classifier, were used to select the best ten features from 81. This feature selection, combined with ensemble learning, achieved an accuracy of 99.9%. The Receiver Operating Characteristic (ROC) curve, confusion matrix, and K-fold cross-validation were used to evaluate the performance of the proposed model.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
