Review Article Open Access

Toward an Online DoS/DDoS Classification: An Empirical Study for Network Intrusion Detection Systems

Tran Hoang Hai1, Nguyen Trong Khiem1 and Nguyen Huu Phuc2
  • 1 Hanoi University of Science and Technology, Vietnam
  • 2 FPT Corporation, Vietnam

Abstract

In recent years, Distributed Denial of Services (DDoS) attacks have caused significant losses to industry and government due to an increasing number of devices connected to the Internet. These devices use services-over-Internet more frequently with services characterized and provided seamlessly by 5G, Cloud and Edge Computing. According to Cisco Annual Internet Report, the frequency of DoS/DDoS attacks has increased more than 2.5 times over the last 3 years and the average size of attacks is increasing steadily and approaching 1 Gbps. Therefore, there are cyber threats continuing to grow even with the development of new protection technologies. Our work is strongly motivated from with the goal to study and evaluate four Machine Learning models toward development of an Online Network Intrusion Detection System (N-IDS). This article studies on the application on three feature selection algorithms combined with four machine learning models applied to N-IDS. We have implemented performance evaluation our proposed model on three up-to-date DoS/DDoS datasets. We have shown that Feature Importance and K-Nearest Neighbors’ algorithm (KNN) can give better results in all benchmark datasets than previous work and the empirical results of all four machine learning models and three feature selection algorithms are also presented in detail.

Journal of Computer Science
Volume 17 No. 3, 2021, 304-318

DOI: https://doi.org/10.3844/jcssp.2021.304.318

Submitted On: 15 December 2020 Published On: 30 March 2021

How to Cite: Hai, T. H., Khiem, N. T. & Phuc, N. H. (2021). Toward an Online DoS/DDoS Classification: An Empirical Study for Network Intrusion Detection Systems. Journal of Computer Science, 17(3), 304-318. https://doi.org/10.3844/jcssp.2021.304.318

  • 3,286 Views
  • 1,426 Downloads
  • 1 Citations

Download

Keywords

  • DDoS
  • Network Security
  • Intrusion Detection
  • Attack Classification