Development and Evaluation of Ensemble Learning Models for Detection of DDOS Attacks in IoT
- 30 June 2022
- journal article
- Published by Hitit University in Hittite Journal of Science and Engineering
- Vol. 9 (2), 73-82
- https://doi.org/10.17350/hjse19030000257
Abstract
Internet of Things that process tremendous confidential data have difficulty performing traditional security algorithms, thus their security is at risk. The security tasks to be added to these devices should be able to operate without disturbing the smooth operation of the system so that the availability of the system will not be impaired. While various attack detection systems can detect attacks with high accuracy rates, it is often impos-sible to integrate them into Internet of Things devices. Therefore, in this work, the new Distributed Denial-of-Service (DDoS) detection models using feature selection and learn-ing algorithms jointly are proposed to detect DDoS attacks, which are the most common type encountered by Internet of Things networks. Additionally, this study evaluates the memory consumption of single-based, bagging, and boosting algorithms on the client-side which has scarce resources. Not only the evaluation of memory consumption but also development of ensemble learning models refer to the novel part of this study. The data set consisting of 79 features in total created for the detection of DDoS attacks was minimized by selecting the two most significant features. Evaluation results confirm that the DDoS attack can be detected with high accuracy and less memory usage by the base models com-pared to complex learning methods such as bagging and boosting models. As a result, the findings demonstrate the feasibility of the base models, for the Internet of Things DDoS detection task, due to their application performance.Keywords
This publication has 33 references indexed in Scilit:
- A Multi-Criteria based Software Defined Networking System Architecture for DDoS-Attack MitigationREV Journal on Electronics and Communications, 2017
- DDoS in the IoT: Mirai and Other BotnetsComputer, 2017
- A detection method for a novel DDoS attack against SDN controllers by vast new low-traffic flowsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2016
- Detection of De-Authentication DoS Attacks in Wi-Fi Networks: A Machine Learning ApproachPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2015
- Early detection of DDoS attacks against SDN controllersPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2015
- Bagging and boosting variants for handling classifications problems: a surveyThe Knowledge Engineering Review, 2013
- A Feature Selection Method Based on Information Gain and Genetic AlgorithmPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2012
- Support Vector Machine-Based Algorithm for Post-Fault Transient Stability Status Prediction Using Synchronized MeasurementsIEEE Transactions on Power Systems, 2010
- On bagging and nonlinear estimationJournal of Statistical Planning and Inference, 2007
- Classification and Regression Trees, Bagging, and BoostingHandbook of Statistics, 2005