Visible to the public Securing Smart City Networks - Intelligent Detection Of DDoS Cyber Attacks

TitleSecuring Smart City Networks - Intelligent Detection Of DDoS Cyber Attacks
Publication TypeConference Paper
Year of Publication2022
AuthorsBennet, Ms. Deepthi Tabitha, Bennet, Ms. Preethi Samantha, Anitha, D
Conference Name2022 5th International Conference on Contemporary Computing and Informatics (IC3I)
Date Publisheddec
Keywordschatbots, composability, Computational modeling, cyber attack, DDoS, DDoS attack detection, DDoS attack mitigation, Deep Learning, deep neural networks, denial-of-service attack, Human Behavior, machine learning, Metrics, Network security, Neural networks, pubcrawl, resilience, Resiliency, smart cities, smart city, Traffic Control
Abstract

A distributed denial-of-service (DDoS) is a malicious attempt by attackers to disrupt the normal traffic of a targeted server, service or network. This is done by overwhelming the target and its surrounding infrastructure with a flood of Internet traffic. The multiple compromised computer systems (bots or zombies) then act as sources of attack traffic. Exploited machines can include computers and other network resources such as IoT devices. The attack results in either degraded network performance or a total service outage of critical infrastructure. This can lead to heavy financial losses and reputational damage. These attacks maximise effectiveness by controlling the affected systems remotely and establishing a network of bots called bot networks. It is very difficult to separate the attack traffic from normal traffic. Early detection is essential for successful mitigation of the attack, which gives rise to a very important role in cybersecurity to detect the attacks and mitigate the effects. This can be done by deploying machine learning or deep learning models to monitor the traffic data. We propose using various machine learning and deep learning algorithms to analyse the traffic patterns and separate malicious traffic from normal traffic. Two suitable datasets have been identified (DDoS attack SDN dataset and CICDDoS2019 dataset). All essential preprocessing is performed on both datasets. Feature selection is also performed before detection techniques are applied. 8 different Neural Networks/ Ensemble/ Machine Learning models are chosen and the datasets are analysed. The best model is chosen based on the performance metrics (DEEP NEURAL NETWORK MODEL). An alternative is also suggested (Next best - Hypermodel). Optimisation by Hyperparameter tuning further enhances the accuracy. Based on the nature of the attack and the intended target, suitable mitigation procedures can then be deployed.

DOI10.1109/IC3I56241.2022.10073271
Citation Keybennet_securing_2022