The documents distributed by this server have been provided by the contributing authors as a means to ensure timely dissemination of scholarly and technical work on a non-commercial basis. Copyright and all rights therein are maintained by the authors or by other copyright holders, not withstanding that they have offered their works here electronically. It is understood that all persons copying this information will adhere to the terms and constraints invoked by each author's copyright. These works may not be reposted without the explicit permission of the copyright holder.

Improving DDoS Attack Detection Leveraging a Multi-aspect Ensemble Feature Selection

Author:Pegah Golchin, Ralf Kundel, Tim Steuer, Rhaban Hark, Ralf Steinmetz
Date:April 2022
Kind:In proceedings - use for conference & workshop papers
Book title:Proceedings of the IEEE/IFIP Network Operations and Management Symposium (NOMS), 2022.
Abstract:DDoS attack detection is crucial in computer networks to meet the reliability and accessibility requirements of online services. The ability of machine learning to discriminate between DDoS attacks and benign flows makes it a promising candidate for DDoS detection. Correctly classifying the flows with high performance in near real-time is a critical issue for an ML-based DDoS detector to reduce the damages of DDoS attacks. In order to improve the performance of classification and reduce the prediction time, we propose a multi-aspect Ensemble Feature Selection (EFS) for DDoS attack detection in this work. The presented EFS selects the most relevant features of each attack separately, leveraging a combination of statistical filtering approaches and machine learning methods. We evaluate our method on two different datasets to demonstrate the EFS robustness toward model-specific biases. Last, we demonstrate that the prediction time is reduced leveraging the proposed EFS.
Full paper (pdf)

[Export this entry to BibTeX]