Login
Register
Submit a Paper
Propose a Special lssue
Open Access
ARTICLE
A Machine Learning-Based Distributed Denial of Service Detection Approach for Early Warning in Internet Exchange Points
School of Technology and Innovation College of Business, Innovation, Leadership, and Technology (BILT), Marymount University, Arlington, Virginia, 22207, USA
* Corresponding Author: Salem Alhayani. Email:
Computers, Materials & Continua 2023, 76(2), 2235-2259. https://doi.org/10.32604/cmc.2023.038003
Received 24 November 2022; Accepted 24 May 2023; Issue published 30 August 2023
View Full Text
Download PDFAbstract
The Internet service provider (ISP) is the heart of any country’s Internet infrastructure and plays an important role in connecting to the World Wide Web. Internet exchange point (IXP) allows the interconnection of two or more separate network infrastructures. All Internet traffic entering a country should pass through its IXP. Thus, it is an ideal location for performing malicious traffic analysis. Distributed denial of service (DDoS) attacks are becoming a more serious daily threat. Malicious actors in DDoS attacks control numerous infected machines known as botnets. Botnets are used to send numerous fake requests to overwhelm the resources of victims and make them unavailable for some periods. To date, such attacks present a major devastating security threat on the Internet. This paper proposes an effective and efficient machine learning (ML)-based DDoS detection approach for the early warning and protection of the Saudi Arabia Internet exchange point (SAIXP) platform. The effectiveness and efficiency of the proposed approach are verified by selecting an accurate ML method with a small number of input features. A chi-square method is used for feature selection because it is easier to compute than other methods, and it does not require any assumption about feature distribution values. Several ML methods are assessed using holdout and 10-fold tests on a public large-size dataset. The experiments showed that the performance of the decision tree (DT) classifier achieved a high accuracy result (99.98%) with a small number of features (10 features). The experimental results confirm the applicability of using DT and chi-square for DDoS detection and early warning in SAIXP.Keywords
Internet exchange point; Saudi Arabia IXP (SAIXP); distributed denial of service; chi-square; feature selection; machine learning
Cite This Article
APA Style
Alhayani, S., Murphy, D.R. (2023). A machine learning-based distributed denial of service detection approach for early warning in internet exchange points. Computers, Materials & Continua, 76(2), 2235-2259. https://doi.org/10.32604/cmc.2023.038003
Vancouver Style
Alhayani S, Murphy DR. A machine learning-based distributed denial of service detection approach for early warning in internet exchange points. Comput Mater Contin. 2023;76(2):2235-2259 https://doi.org/10.32604/cmc.2023.038003
IEEE Style
S. Alhayani and D.R. Murphy, "A Machine Learning-Based Distributed Denial of Service Detection Approach for Early Warning in Internet Exchange Points," Comput. Mater. Contin., vol. 76, no. 2, pp. 2235-2259. 2023. https://doi.org/10.32604/cmc.2023.038003
This work is licensed under a Creative Commons Attribution 4.0 International License , which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
Downloads
Citation Tools
