DWT和AKD自动编码器的DDoS攻击检测方法研究

doi:10.13878/j.cnki.jnuist.20220919001

2025年5月21日 23:48 星期三

首页 > 过刊浏览>2023年第15卷第4期 >419-428. DOI:10.13878/j.cnki.jnuist.20220919001

DWT和AKD自动编码器的DDoS攻击检测方法研究
DOI:
                        10.13878/j.cnki.jnuist.20220919001
                    
作者:
                        王博王博
贵州大学 计算机科学与技术学院/公共大数据国家重点实验室, 贵阳, 550025
在期刊界中查找
在百度中查找
在本站中查找
万良万良
贵州大学 计算机科学与技术学院/公共大数据国家重点实验室, 贵阳, 550025
在期刊界中查找
在百度中查找
在本站中查找
刘明盛刘明盛
贵州大学 计算机科学与技术学院/公共大数据国家重点实验室, 贵阳, 550025
在期刊界中查找
在百度中查找
在本站中查找
孙菡迪孙菡迪
贵州大学 计算机科学与技术学院/公共大数据国家重点实验室, 贵阳, 550025
在期刊界中查找
在百度中查找
在本站中查找

                    
作者单位:
作者简介:
通讯作者:
中图分类号:TP393
基金项目:国家自然科学基金 (62062020);贵州省教育厅自然科学研究项目(黔教科(2007)015号)

DDoS attack detection via DWT and AKD auto-encoder

Author:

WANG Bo
WANG Bo
College of Computer Science and Technology/State Key Laboratory of Public Big Data, Guizhou University, Guiyang 550025
在期刊界中查找
在百度中查找
在本站中查找
WAN Liang
WAN Liang
College of Computer Science and Technology/State Key Laboratory of Public Big Data, Guizhou University, Guiyang 550025
在期刊界中查找
在百度中查找
在本站中查找
LIU Mingsheng
LIU Mingsheng
College of Computer Science and Technology/State Key Laboratory of Public Big Data, Guizhou University, Guiyang 550025
在期刊界中查找
在百度中查找
在本站中查找
SUN Handi
SUN Handi
College of Computer Science and Technology/State Key Laboratory of Public Big Data, Guizhou University, Guiyang 550025
在期刊界中查找
在百度中查找
在本站中查找

Affiliation:

Fund Project:

摘要

图/表

访问统计

参考文献

相似文献

引证文献

资源附件

文章评论

摘要:

针对DDoS网络流量攻击检测效率低及误报率高的问题,本文提出一种基于离散小波变换(Discrete Wavelet Transform,DWT)和自适应知识蒸馏(Adaptive Knowledge Distillation,AKD)自动编码器神经网络的DDoS攻击检测方法.该方法利用离散小波变换提取频率特征,由自动编码器神经网络进行特征编码并实现分类,通过自适应知识蒸馏压缩模型,以实现高效检测DDoS攻击流量.研究结果表明,该方法对代理服务器攻击、数据库漏洞和TCP洪水攻击、UDP洪水攻击具有较高的检测效率,并且具有较低的误报率.

关键词:DDoS攻击;离散小波变换;自适应;知识蒸馏;自动编码器

Abstract:

To address the low efficiency and high false alarm rate in detection of DDoS (Distributed Denial of Service) flood attacks,this paper proposes a DWT (Discrete Wavelet Transform) and AKD (Adaptive Knowledge Distillation) self-encoder neural network based approach to detect DDoS attacks.The approach uses the DWT to extract frequency features,the auto-encoder neural network to encode and classify the features,and the AKD to compress the model in order to achieve efficient detection of DDoS attacks.The results show that the approach has high detection efficiency for proxy server attacks,database vulnerabilities & TCP flood attacks,and UDP flood attacks,with low false alarm rate.

Key words:DDoS attack;discrete wavelet transform (DWT);adaptive;knowledge distillation;auto-encoder

参考文献

[1] 国家互联网应急中心.我国DDoS攻击资源分析报告[R].北京:国家互联网应急中心,2022 National Internet Emergency Response Center.China DDoS attack resources analysis report[R].Beijing:National Internet Emergency Response Center,2022

[2] Awan M J,Farooq U,Babar H M A,et al.Real-time DDoS attack detection system using big data approach[J].Sustainability,2021,13(19):10743

[3] Ahuja N,Singal G.DDoS attack detection & prevention in SDN using OpenFlow statistics[C]//2019 IEEE 9th International Conference on Advanced Computing.Tiruchirappalli,India.IEEE,2019:147-152

[4] Wang M,Lu Y Q,Qin J C.A dynamic MLP-based DDoS attack detection method using feature selection and feedback[J].Computers & Security,2020,88:101645

[5] Doshi R,Apthorpe N,Feamster N.Machine learning DDoS detection for consumer Internet of Things devices[C]//2018 IEEE Security and Privacy Workshops.San Francisco,CA,USA.IEEE,2018:29-35

[6] Odumuyiwa V,Alabi R.DDoS detection on Internet of Things using unsupervised algorithms[J].Journal of Cyber Security and Mobility,2021:569-592

[7] Yang K,Zhang J J,Xu Y,et al.DDoS attacks detection with autoencoder[C]//2020 IEEE/IFIP Network Operations and Management Symposium.Budapest,Hungary.IEEE,2020:1-9

[8] Huang C,Yi P,Zou F T,et al.CCID:cross-correlation identity distinction method for detecting shrew DDoS[J].Wireless Communications and Mobile Computing,2019,2019:6705347

[9] Agrawal N,Tapaswi S.Defense mechanisms against DDoS attacks in a cloud computing environment:state-of-the-art and research challenges[J].IEEE Communications Surveys & Tutorials,2019,21(4):3769-3795

[10] Zhou L Y,Guo H Q,Deng G L.A fog computing based approach to DDoS mitigation in IIoT systems[J].Computers & Security,2019,85:51-62

[11] Agrawal N,Tapaswi S.Low rate cloud DDoS attack defense method based on power spectral density analysis[J].Information Processing Letters,2018,138:44-50

[12] Jose A S,Nair L R,Paul V.Towards detecting flooding DDoS attacks over software defined networks using machine learning techniques[J].Revista Gestão Inovação e Tecnologias,2021,11(4):3837-3865

[13] Mishra A,Gupta N,Gupta B B.Defense mechanisms against DDoS attack based on entropy in SDN-cloud using POX controller[J].Telecommunication Systems,2021,77(1):47-62

[14] Idhammad M,Afdel K,Belouch M.Semi-supervised machine learning approach for DDoS detection[J].Applied Intelligence,2018,48(10):3193-3208

[15] Liu Z P,He Y P,Wang W S,et al.DDoS attack detection scheme based on entropy and PSO-BP neural network in SDN[J].China Communications,2019,16(7):144-155

[16] 周奕涛,张斌,刘自豪.基于多模态深度神经网络的应用层DDoS攻击检测模型[J].电子学报,2022,50(2):508-512 ZHOU Yitao,ZHANG Bin,LIU Zihao.Application layer DDoS detection model based on multimodal deep learning neural network[J].Acta Electronica Sinica,2022,50(2):508-512

[17] Li Y,Lu Y F.LSTM-BA:DDoS detection approach combining LSTM and Bayes[C]//2019 Seventh International Conference on Advanced Cloud and Big Data (CBD).Suzhou,China.IEEE,2019:180-185

[18] 张安琳,张启坤,黄道颖,等.基于CNN与BiGRU融合神经网络的入侵检测模型[J].郑州大学学报(工学版),2022,43(3):37-43 ZHANG Anlin,ZHANG Qikun,HUANG Daoying,et al.Intrusion detection model based on CNN and BiGRU fused neural network[J].Journal of Zhengzhou University (Engineering Science),2022,43(3):37-43

[19] 赵志强,易秀双,李婕,等.基于GR-AD-KNN算法的IPv6网络DoS入侵检测技术研究[J].计算机科学,2021,48(增刊1):524-528 ZHAO Zhiqiang,YI Xiushuang,LI Jie,et al.Research on DoS intrusion detection technology of IPv6 network based on GR-AD-KNN algorithm[J].Computer Science,2021,48(sup1):524-528

[20] Wang Z D,Li Z Y,He D J,et al.A lightweight approach for network intrusion detection in industrial cyber-physical systems based on knowledge distillation and deep metric learning[J].Expert Systems with Applications,2022,206:117671

[21] Liu X Q,Ren J D,He H T,et al.Low-rate DDoS attacks detection method using data compression and behavior divergence measurement[J].Computers & Security,2021,100:102107

[22] Liu Z,Hu C Z,Shan C.Riemannian manifold on stream data:Fourier transform and entropy-based DDoS attacks detection method[J].Computers & Security,2021,109:102392

[23] Fouladi R F,Ermiş O,Anarim E.A DDoS attack detection and countermeasure scheme based on DWT and auto-encoder neural network for SDN[J].Computer Networks,2022,214:109140

[24] Bornmann L.How to analyse percentile impact data meaningfully in bibliometrics:the statistical analysis of distributions,percentile rank classes and top-cited papers[J].arXiv e-print,2012,arXiv:1206.1741

引用本文

王博,万良,刘明盛,孙菡迪. DWT和AKD自动编码器的DDoS攻击检测方法研究[J].南京信息工程大学学报(自然科学版),2023,15(4):419-428
WANG Bo, WAN Liang, LIU Mingsheng, SUN Handi. DDoS attack detection via DWT and AKD auto-encoder[J]. Journal of Nanjing University of Information Science & Technology, 2023,15(4):419-428

复制

文章指标

点击次数:206
下载次数: 1287
HTML阅读次数: 104
引用次数: 0

历史

收稿日期:2022-09-19
最后修改日期:
录用日期:
在线发布日期: 2023-07-06
出版日期:

地址：江苏省南京市宁六路219号邮编：210044

联系电话：025-58731025 E-mail：nxdxb@nuist.edu.cn

引用本文

分享

文章指标

历史