Web-based Application Layer Distributed Denial-of-Service Attacks: A Data-Driven Machine Learning Strategy

Authors

  • K Alluraiah Koneru Lakshmaiah Education Foundation
  • Manna Sheela Rani Chetty Koneru Lakshmaiah Education Foundation

DOI:

https://doi.org/10.13053/cys-28-3-5182

Keywords:

Detection of App-DDoS, Denial of service (DoS) attacks, Application layer DDoS (App-DDoS), LLDoS dataset, and Distributed DoS (DDoS) attacks

Abstract

DDoS attacks, which aim to overwhelm a system with requests, are common place in the cyber world. In this type of assault, band width and processing resources are deliberately clogged to disrupt legitimate users' interactions. These attacks inundate the victim's system with packets, rendering it inaccessible. Diverging from the singular source of Denial of Service (DoS) attacks, DDoS attacks emanate from many servers, magnifying their impact. Over the last decade, a concentrated effort has been invested in comprehending the orchestration and authentication of DDoS attacks, resulting in valuable insights into discerning attack patterns and suspicious activities. Currently, the focus has shifted towards real-time detection within the stream of network transactions, constituting a critical research domain. Yet, this focus often sidelines the importance of benchmarking DDoS attack assertions within the streaming data framework. As a remedy, the Anomaly-based Real-Time Prevention (ARTP) framework has been formulated and designed specifically to combat application layer DDoS attacks, particularly targeting web applications. Employing advanced machine learning techniques, ARTP offers adaptable methodologies to swiftly and accurately pinpoint application-layer DDoS attacks. Rigorous testing on a representative LLDoS (Low-Level DoS) benchmark dataset has affirmed the resilience and efficiency of the proposed ARTP model, underscoring its capacity to achieve the research objectives set forth.

Downloads

Published

2024-09-17

Issue

Vol. 28 No. 3 (2024): 28(3) 2024

Section

Articles of the Thematic Section

License 

Hereby I transfer exclusively to the Journal "Computación y 
Sistemas", published by the Computing Research Center (CIC-IPN),
the Copyright of the aforementioned paper. I also accept that these 
rights will not be transferred to any other publication, in any other 
format, language or other existing means of developing.
I certify that the paper has not been previously disclosed or simultaneo
usly submitted to any other publication, and that it does not contain 
material whose publication would violate the Copyright or other 
proprietary rights of any person, company or institution. I certify that 
I have the permission from the institution or company where I work or 
study to publish this work.
The representative author accepts the responsibility for the publication
of this paper on behalf of each and every one of the authors. 
This transfer is subject to the following conditions:
  • The authors retain all ownership rights (such as patent rights) of this work, except for the publishing rights transferred to the CIC, through this document.
  • Authors retain the right to publish the work in whole or in part in any book they are the authors or publishers. They can also make use of this work in conferences, courses, personal web pages, and so on.
  • Authors may include working as part of his thesis, for non-profit distribution only.