Journal of Scientific and Industrial Research

Open Access Open Access  Restricted Access Subscription Access

DDoS Attack Detection Using Hybrid Machine Learning Based IDS Models


Affiliations
1 University V O C College of Engineering, Anna University, Thoothukudi 628 003, Tamilnadu,, India
2 Indian Institute of Technology Madras, Chennai 600 036, Tamilnadu, India
3 Syed Ammal Engineering College, Ramanathapuram 623 502, Tamilnadu, India

A kind of cyber-attack that severely paralyzes the victim server by injecting illegitimate packets of data is a DDoS attack, which is progressive in nature. Therefore its detection is a highly tedious task. Hence, IDS models are developed to detect this attack efficiently, based on machine learning algorithms such as C4.5, SVM, and KNN classifier algorithms and 10-fold cross validation techniques. The NSL-KDD bench mark dataset is employed to validate the models experimentally. A 10-fold cross validation technique is used to select the trend features, and ten trial runs are made to avoid biased output. The classic SVM classifier model reported better accuracy, but the precision and sensitivity of the C4.5 classifier algorithm are better than that of SVM and KNN models. In order to improve the performance of the machine learning based intrusion detection models, an attempt is made to feed the SVM and KNN based IDS model with the features selected by C4.5 classifier algorithm, and the obtained performance metric values are reported. It is evident from the results obtained that the hybrid combination of C4.5 with SVM out performed all other models discussed in this research with an accuracy of 0.9604.
User
Notifications
Font Size

Abstract Views: 83




  • DDoS Attack Detection Using Hybrid Machine Learning Based IDS Models

Abstract Views: 83  | 

Authors

S Sumathi
University V O C College of Engineering, Anna University, Thoothukudi 628 003, Tamilnadu,, India
R Rajesh
Indian Institute of Technology Madras, Chennai 600 036, Tamilnadu, India
N Karthikeyan
Syed Ammal Engineering College, Ramanathapuram 623 502, Tamilnadu, India

Abstract


A kind of cyber-attack that severely paralyzes the victim server by injecting illegitimate packets of data is a DDoS attack, which is progressive in nature. Therefore its detection is a highly tedious task. Hence, IDS models are developed to detect this attack efficiently, based on machine learning algorithms such as C4.5, SVM, and KNN classifier algorithms and 10-fold cross validation techniques. The NSL-KDD bench mark dataset is employed to validate the models experimentally. A 10-fold cross validation technique is used to select the trend features, and ten trial runs are made to avoid biased output. The classic SVM classifier model reported better accuracy, but the precision and sensitivity of the C4.5 classifier algorithm are better than that of SVM and KNN models. In order to improve the performance of the machine learning based intrusion detection models, an attempt is made to feed the SVM and KNN based IDS model with the features selected by C4.5 classifier algorithm, and the obtained performance metric values are reported. It is evident from the results obtained that the hybrid combination of C4.5 with SVM out performed all other models discussed in this research with an accuracy of 0.9604.