Detecting Distributed Denial of Service Attacks Using Hidden Markov Models
Distributed Denial of Service (DDoS) attacks considered the most critical attack for cyber security and serious security threat to Internet services in recent years. These attacks have evolved to be increasingly sophisticated, complex, and difficult to mitigate and detect. In this paper, we propose a new approach using HMM to detect DDoS attacks. The performance of the proposed approach is generally better and achieve higher detection rate and lower false positive rate comparing with two other machine-learning algorithms Naive Bayes and Neural Network. Training and testing applied on a DDoS data set with reduced feature. Using the reduced feature set after applying the Feature Pruning algorithm that we implemented obtains a significant improvement in detection performance and reduction model training and testing time.
Keywords: Hidden Markov models (HMM), distributed denial of service (DDoS).
Download Full-Text
ABOUT THE AUTHORS
Sulaiman Alhaidari
Ali Alharbi
Mohamed Zohdy
Sulaiman Alhaidari
Ali Alharbi
Mohamed Zohdy