Abstract
Distributed Denial of Service (DDoS) detection is one of the challenging topics in cyber defense realm. Detection of this type of attack in the early stages can be beneficial. In this paper, we propose an entropy-based detection framework using Support Vector Machine (SVM) classification algorithm to detect sources being used in DDoS attacks. This method can prevent Denial of Service (DoS) attack from proceeding in source devices which are involved in a DDoS botnet attack. By intercepting outgoing packets from an Android device, proposed framework extract packet features in a specific time window. Normal and abnormal network behavior of a user will be logged and analyzed using SVM algorithm. The obtained model will be used as a detection system for malicious activities.
Original language | English |
---|---|
Title of host publication | Proceedings - 6th IEEE International Conference on Cyber Security and Cloud Computing, CSCloud 2019 and 5th IEEE International Conference on Edge Computing and Scalable Cloud, EdgeCom 2019 |
Editors | Meikang Qiu |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Pages | 163-168 |
Number of pages | 6 |
ISBN (Electronic) | 9781728116600 |
DOIs | |
Publication status | Published - Jun 2019 |
Event | 6th IEEE International Conference on Cyber Security and Cloud Computing and 5th IEEE International Conference on Edge Computing and Scalable Cloud, CSCloud/EdgeCom 2019 - Paris, France Duration: 21 Jun 2019 → 23 Jun 2019 |
Publication series
Name | Proceedings - 6th IEEE International Conference on Cyber Security and Cloud Computing, CSCloud 2019 and 5th IEEE International Conference on Edge Computing and Scalable Cloud, EdgeCom 2019 |
---|
Conference
Conference | 6th IEEE International Conference on Cyber Security and Cloud Computing and 5th IEEE International Conference on Edge Computing and Scalable Cloud, CSCloud/EdgeCom 2019 |
---|---|
Country/Territory | France |
City | Paris |
Period | 21/06/19 → 23/06/19 |
Bibliographical note
Publisher Copyright:© 2019 IEEE.
Keywords
- DDoS Detection
- Entropy
- Machine Learning
- SVM
- TCP Flood