Feature Selection for Robust Detection of Distributed Denial-of-Service Attacks Using Genetic Algorithms

Feature Selection for Robust Detection of Distributed Denial-of-Service Attacks Using Genetic Algorithms

In this paper we present a robust neural network detector for Distributed Denial-of-Service (DDoS) attacks in computers providing Internet services. A genetic algorithm is used to select a small number of efficient features from an extended set of 44 statistical features, which are estimated only fr...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Dimitris, Gavrilis, Ioannis, Tsoulos, Evangelos, Dermatas
Format: Buchkapitel
Sprache:eng
Schlagworte:
Applied sciences
Artificial intelligence
Computer science
control theory
systems
Denial of Service
Exact sciences and technology
Genetic Algorithms
Information systems. Data bases
Learning and adaptive systems
Memory organisation. Data processing
Neural Networks
Software
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:In this paper we present a robust neural network detector for Distributed Denial-of-Service (DDoS) attacks in computers providing Internet services. A genetic algorithm is used to select a small number of efficient features from an extended set of 44 statistical features, which are estimated only from the packet headers. The genetic evaluation produces an error-free neural network DDoS detector using only 14 features. Moreover, the experimental results showed that the features that best qualify for DDoS detection are the SYN and URG flags, the probability of distinct Source Ports in each timeframe, the number of packets that use certain port ranges the TTL and the window size in each timeframe.
ISSN:0302-9743
1611-3349
DOI:10.1007/978-3-540-24674-9_29