IDEAS home Printed from https://ideas.repec.org/a/gam/jmathe/v11y2023i9p2145-d1138628.html
   My bibliography  Save this article

Detection of Unknown DDoS Attack Using Convolutional Neural Networks Featuring Geometrical Metric

Author

Listed:
  • Chin-Shiuh Shieh

    (Department of Electronic Engineering, National Kaohsiung University of Science and Technology, Kaohsiung 807618, Taiwan)

  • Thanh-Tuan Nguyen

    (Department of Electronic Engineering, National Kaohsiung University of Science and Technology, Kaohsiung 807618, Taiwan
    Department of Electronic and Automation Engineering, Nha Trang University, Nha Trang 650000, Vietnam)

  • Mong-Fong Horng

    (Department of Electronic Engineering, National Kaohsiung University of Science and Technology, Kaohsiung 807618, Taiwan
    Ph.D Program in Biomedical Engineering, Kaohsiung Medial University, Kaohsiung 80708, Taiwan)

Abstract

DDoS attacks remain a persistent cybersecurity threat, blocking services to legitimate users and causing significant damage to reputation, finances, and potential customers. For the detection of DDoS attacks, machine learning techniques such as supervised learning have been extensively employed, but their effectiveness declines when the framework confronts patterns exterior to the dataset. In addition, DDoS attack schemes continue to improve, rendering conventional data model-based training ineffectual. We have developed a novelty open-set recognition framework for DDoS attack detection to overcome the challenges of traditional methods. Our framework is built on a Convolutional Neural Network (CNN) construction featuring geometrical metric (CNN-Geo), which utilizes deep learning techniques to enhance accuracy. In addition, we have integrated an incremental learning module that can efficiently incorporate novel unknown traffic identified by telecommunication experts through the monitoring process. This unique approach provides an effective solution for identifying and alleviating DDoS. The module continuously improves the model’s performance by incorporating new knowledge and adapting to new attack patterns. The proposed model can detect unknown DDoS attacks with a detection rate of over 99% on conventional attacks from CICIDS2017. The model’s accuracy is further enhanced by 99.8% toward unknown attacks with the open datasets CICDDoS2019.

Suggested Citation

  • Chin-Shiuh Shieh & Thanh-Tuan Nguyen & Mong-Fong Horng, 2023. "Detection of Unknown DDoS Attack Using Convolutional Neural Networks Featuring Geometrical Metric," Mathematics, MDPI, vol. 11(9), pages 1-24, May.
    • Handle: RePEc:gam:jmathe:v:11:y:2023:i:9:p:2145-:d:1138628
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/2227-7390/11/9/2145/pdf
    Download Restriction: no
    File URL: https://www.mdpi.com/2227-7390/11/9/2145/
    Download Restriction: no
    ---><---

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Tan Li & Che-Heng Fung & Him-Ting Wong & Tak-Lam Chan & Haibo Hu, 2023. "Functional Subspace Variational Autoencoder for Domain-Adaptive Fault Diagnosis," Mathematics, MDPI, vol. 11(13), pages 1-18, June.
    2. Walid I. Khedr & Ameer E. Gouda & Ehab R. Mohamed, 2023. "P4-HLDMC: A Novel Framework for DDoS and ARP Attack Detection and Mitigation in SD-IoT Networks Using Machine Learning, Stateful P4, and Distributed Multi-Controller Architecture," Mathematics, MDPI, vol. 11(16), pages 1-36, August.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jmathe:v:11:y:2023:i:9:p:2145-:d:1138628. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.