Skip to main content
Disciplines
Automotive Business IT + Informatics Construction + Real Estate Electrical Engineering + Electronics Energy + Sustainability Insurance + Risk Finance + Banking Management + Leadership Marketing + Sales Mechanical Engineering + Materials
Events
DE
EN
Books
Journals
Topic Page
Marketing
Start single access now
Access for companies
EXTENDED SEARCH
Log in
Top
Automatic Control and Computer Sciences
Published in: Automatic Control and Computer Sciences 8/2020

01-12-2020

Detection of Distributed Denial of Service Attacks in Large-Scale Networks Based on Methods of Mathematical Statistics and Artificial Intelligence

Author: I. V. Alekseev

Published in: Automatic Control and Computer Sciences | Issue 8/2020

Login to get access

Activate our intelligent search to find suitable subject content or patents.

search-config
loading …

Abstract

It is proposed to use the mathematical apparatus of wavelet transforms combined with the clustering of the obtained and transformed coefficients to detect attacks in the traffic of backbone networks. The wavelet transform coefficients obtained from the parameters of network packets are checked for the degree of multiple dependence, on the basis of which the standard deviation is calculated and the resulting coefficients are clustered to identify anomalies of the investigated network flow. The efficiency of the proposed method is confirmed by the results of experiments on detecting denial of service attacks.
previous article Securing Post-Quantum Resistance for Quantum-Protected Communication Systems
next article Optimal Identification for Objects in Problems on Recognition by Unmanned Underwater Vehicles
Literature
1.
Anstee, D., Chui, C.F., Bowen, P., and Sockrider, G., Worldwide Infrastructure Security Report, Westford, MA: Arbor Networks Inc., 2017.
2.
Vasiliev, Y.S., Zegzhda, P.D., and Kuvshinov, V.I., Modern problems of cybersecurity, Nonlinear Phenom. Complex Syst. (Dordrecht, Neth.), 2014, vol. 17, no. 3, pp. 210–214.
3.
4.
5.
Belenko, V., Krundyshev, V., and Kalinin, M., Intrusion detection for Internet of Things applying metagenome fast analysis, Proceedings of the 3rd World Conference on Smart Trends in Systems, Security and Sustainability, WorldS4, 2019, pp. 129–135.
6.
Zegzhda, P., Zegzhda, D., Kalinin, M., Pechenkin, A., Minin, A., and Lavrova, D., Safe integration of SIEM systems with Internet of Things: Data aggregation, integrity control, and bioinspired safe routing, ACM International Conference Proceeding Series, 2016, pp. 81–87.
7.
Cao, Y., et al., Understanding internet DDoS mitigation from academic and industrial perspectives, IEEE Access, 2018, no. 6, pp. 66641–66648.
8.
Pulse Wave Heavy DDoS Attack to Take Down Multiple Protected Target Networks. https://​gbhackers.​com/​ new-ddos-attack-pulse-wave/.
9.
Krundyshev, V., Kalinin, M., and Zegzhda, P., Artificial swarm algorithm for VANET protection against routing attacks, IEEE Industrial Cyber-Physical Systems, 2018, pp. 795–800.CrossRef
10.
Lavrova, D.S., Alekseev, I.V., and Shtyrkina, A.A., Security analysis based on controlling dependences of network traffic parameters by wavelet transformation, Autom. Control Comput. Sci., 2018, vol. 52, no. 8, pp. 931–935.CrossRef
11.
Kozionov, A.P., Pyait, A.L., Mokhov, I.I., and Ivanov, Yu.P., Wavelet transform and one-class classification for monitoring the state of dams, Inf.-Upr. Sist., 2014, no. 4, pp. 24–32.
12.
Li, L. and Lee, G., DDoS attack detection and wavelets, Telecommun. Syst., 2005, vol. 28, nos. 3–4, pp. 435–451.CrossRef
13.
Tian, X., Wu, J., and Ji, C., A unified framework for understanding network traffic using independent wavelet models, Proceedings. Twenty-First Annual Joint Conference of the IEEE Computer and Communications Societies, New York, 2002, vol. 1, pp. 446–454; Pescapè, A. and Ventre, G., Wavelet-based detection of DoS attacks, IEEE Globecom, San Francisco, CA, 2006, pp. 1–6.
14.
Lima Filho, F.S., et al., Smart detection: An online approach for DoS/DDoS attack detection using machine learning, Secur. Commun. Networks, 2019, vol. 2019; Bhaya, W.S. and Ebadymanna, M., DDoS attack detection approach using an efficient cluster analysis in large data scale, 2017 Annual Conference on New Trends in Information & Communications Technology Applications (NTICT), Baghdad, 2017, pp. 168–173.
15.
Tang, D., et al., Low-rate DoS attack detection based on two-step cluster analysis, International Conference on Information and Communications Security, Lille, 2018, pp. 92–104.
16.
Lavrova, D., Zegzhda, D., and Yarmak, A., Using GRU neural network for cyber-attack detection in automated process control systems, IEEE International Black Sea Conference on Communications and Networking (BlackSeaCom), Sochi, 2019, pp. 1–3.
17.
Ivanov, D.V. and Moskvin, D.A., Application of fractal methods to ensure the cyber-resilience of self-organizing networks, Nonlinear Phenom. Complex Syst. (Dordrecht, Neth.), 2019, vol. 22, no. 4, pp. 336–341.
18.
Lavrova, D., Zaitceva, E., and Zegzhda, P., Bio-inspired approach to self-regulation for industrial dynamic network infrastructure, CEUR Workshop Proc., 2019, vol. 2603, pp. 34–39.
19.
Lavrova, D., Zegzhda, D., and Yarmak, A., Predicting cyber attacks on industrial systems using the Kalman filter, 3rd World Conference on Smart Trends in Systems, Security and Sustainability, WorldS4 2019, 2019, pp. 317–321.
20.
Zegzhda, D., Lavrova, D., and Poltavtseva, M., Multifractal security analysis of cyberphysical systems, Nonlinear Phenom. Complex Syst. (Dordrecht, Neth.), 2019, vol. 22, no. 2, pp. 196–204.
21.
DARPA Intrusion Detection Evaluation. Intrusion Detection Attacks Database. https://​archive.​ll.​mit.​edu/​ideval/​ data/1999/training/week2/index.html.
22.
Canadian Institute for Cybersecurity DDoS Evaluation Dataset (CICDDoS2019). https://​www.​unb.​ca/​ cic/datasets/ddos-2019.html.
Metadata
Title
Detection of Distributed Denial of Service Attacks in Large-Scale Networks Based on Methods of Mathematical Statistics and Artificial Intelligence
Author
I. V. Alekseev
Publication date
01-12-2020
Publisher
Pleiades Publishing
Published in
Automatic Control and Computer Sciences / Issue 8/2020
Print ISSN: 0146-4116
Electronic ISSN: 1558-108X
DOI
https://doi.org/10.3103/S0146411620080052

Other articles of this Issue 8/2020

Automatic Control and Computer Sciences 8/2020 Go to the issue

OriginalPaper

Detection of Network Attacks Using the Tsetlin Machine

OriginalPaper

Hierarchical Scheme for Secret Separation Based on Computable Access Labels

OriginalPaper

A Survey of Mathematical Methods for Security Analysis of Cyberphysical Systems

OriginalPaper

Self-Regulation of the Network Infrastructure of Cyberphysical Systems on the Basis of the Genome Assembly Problem

OriginalPaper

An Approach to Assessing Information Security Effectiveness in Control Systems

OriginalPaper

Building an Adaptive System for Collecting and Preparing Data for Security Monitoring