DETECTION AND ANALYSIS OF DDOS ATTACK AT APPLICATION LAYER USING NAÏVE BAYES CLASSIFIER
Journal: JOURNAL OF COMPUTER ENGINEERING & TECHNOLOGY (JCET) (Vol.9, No. 3)Publication Date: 2018-06-28
Authors : MAHADEV VINOD KUMAR; HIMANI SHARMA;
Page : 208-217
Keywords : NSDA (Network Security against DDoS Attack) Model; DDoS; HTTP; Weka; Application Layer; log file.;
Abstract
Most of the services provided through internet becomes vulnerable because of DDoS attacks. It is very difficult to detect these attacks at application layer because time to time these attacks change its characteristics to avoid detection using present DDoS attack detection techniques. So, it is compulsory to understand the characteristics of these attacks before mitigation. A NSDA (Network Security against DDoS Attack) model is proposed here which generates new features i.e. difference of two consecutive times of requests per IP address and Bpt denoting similarity and dissimilarity in byte size (BS) from the log file to efficiently detect these attacks at the application layer. In this model, preprocessing is performed using java programming and Weka 3.8 machine learning tool. Re-sampling method SMOTE (Synthetic Minority Oversampling Technique), RANDOMIZE, RESAMPLE of Weka is used to convert the main dataset into a training set, cross-validation set, and test set. A naive bayes classification in Weka 3.8 is for analyzing and detection of a DDoS attack. A website www.wielson.com is designed to collect pure data set of DDoS attacks so that good quality of analysis can be achieved. DDoS attack testing tool Zombies is used to perform HTTP attack.
Other Latest Articles
- HETEROGENEOUS MULTICHANNEL MULTICONNECTIVITY MOBILITY MANAGEMENT IN NGN
- AN APPROACH TO SCALE THE INFRASTRUCTURE OF PUBLIC CLOUD
- CONTEXT BASED WORD ERROR DETECTION WITH REFERENCE TO ASSAMESE SPEECH RECOGNITION
- AN ULTIMATE SEARCHING ALGORITHM
- FAULT-TOLERANT STM (SOFTWARE TRANSACTIONAL MEMORY) USING REPLICATION
Last modified: 2018-09-15 20:18:08