Abstract
The problem of identifying Distributed Denial of Service (DDos) attacks is fundamentally a classification problem in machine learning. In relevance to Cloud Computing, the task of identification of DDoS attacks is a significantly challenging problem because of computational complexity that has to be addressed. Fundamentally, a Denial of Service (DoS) attack is an intentional attack attempted by attackers from single source which has an implicit intention of making an application unavailable to the target stakeholder. For this to be achieved, attackers usually stagger the network bandwidth, halting system resources, thus causing denial of access for legitimate users. Contrary to DoS attacks, in DDoS attacks, the attacker makes use of multiple sources to initiate an attack. DDoS attacks are most common at network, transportation, presentation and application layers of a seven-layer OSI model. In this paper, the research objective is to study the problem of DDoS attack detection in a Cloud environment by considering the most popular CICIDS 2017 benchmark dataset and applying multiple regression analysis for building a machine learning model to predict DDoS and Bot attacks through considering a Friday afternoon traffic logfile.
Highlights
Denial of Service (DoS)attacks are intended primarily to disrupt computing systems in a network
A Distributed Denial of Service (DDoS) attack is an intentional attack type which is usually made in a distributed computing environment by targeting a website or a server so as to minimize their normal performance
Naïve Bayes, SVM, and Decision trees were proposed to detect Distributed Denial of Service attacks. To detect this DDoS attacks using machine learning methods requires prerequisites on the network to identify the suitable data from the datasets [5,6]
Summary
Denial of Service (DoS)attacks are intended primarily to disrupt computing systems in a network These attacks are initiated from a single machine with the illegitimate intension of targeting a server system through an attack. A DDoS attack is an intentional attack type which is usually made in a distributed computing environment by targeting a website or a server so as to minimize their normal performance. Using these systems, the attacker makes an attack on the target website or server by making multiple requests to the target system or server As these types of attacks are carried out in distributed environments, these are called distributed DDoS attacks. The DDoS attacks are common in the Network layer, Transport layer, Presentation floods or requests to conquer the target system.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
