Detection of Sources Being Used in DDoS Attacks

Yalda Khosroshahi, Enver Ozdemir

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

7 Citations (Scopus)

Abstract

Distributed Denial of Service (DDoS) detection is one of the challenging topics in cyber defense realm. Detection of this type of attack in the early stages can be beneficial. In this paper, we propose an entropy-based detection framework using Support Vector Machine (SVM) classification algorithm to detect sources being used in DDoS attacks. This method can prevent Denial of Service (DoS) attack from proceeding in source devices which are involved in a DDoS botnet attack. By intercepting outgoing packets from an Android device, proposed framework extract packet features in a specific time window. Normal and abnormal network behavior of a user will be logged and analyzed using SVM algorithm. The obtained model will be used as a detection system for malicious activities.

Original languageEnglish
Title of host publicationProceedings - 6th IEEE International Conference on Cyber Security and Cloud Computing, CSCloud 2019 and 5th IEEE International Conference on Edge Computing and Scalable Cloud, EdgeCom 2019
EditorsMeikang Qiu
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages163-168
Number of pages6
ISBN (Electronic)9781728116600
DOIs
Publication statusPublished - Jun 2019
Event6th IEEE International Conference on Cyber Security and Cloud Computing and 5th IEEE International Conference on Edge Computing and Scalable Cloud, CSCloud/EdgeCom 2019 - Paris, France
Duration: 21 Jun 201923 Jun 2019

Publication series

NameProceedings - 6th IEEE International Conference on Cyber Security and Cloud Computing, CSCloud 2019 and 5th IEEE International Conference on Edge Computing and Scalable Cloud, EdgeCom 2019

Conference

Conference6th IEEE International Conference on Cyber Security and Cloud Computing and 5th IEEE International Conference on Edge Computing and Scalable Cloud, CSCloud/EdgeCom 2019
Country/TerritoryFrance
CityParis
Period21/06/1923/06/19

Bibliographical note

Publisher Copyright:
© 2019 IEEE.

Keywords

  • DDoS Detection
  • Entropy
  • Machine Learning
  • SVM
  • TCP Flood

Fingerprint

Dive into the research topics of 'Detection of Sources Being Used in DDoS Attacks'. Together they form a unique fingerprint.

Cite this