The network attacks are increasing both in frequency and intensity with the rapid growth of internet of things (IoT) devices. Recently, denial of service (DoS) and distributed denial of service (DDoS) attacks are reported as the most frequent attacks in IoT networks. The traditional security solutions like firewalls, intrusion detection systems, etc., are unable to detect the complex DoS and DDoS attacks since most of them filter the normal and attack traffic based upon the static predefined rules. However, these solutions can become reliable and effective when integrated with artificial intelligence (AI) based techniques. During the last few years, deep learning models especially convolutional neural networks achieved high significance due to their outstanding performance in the image processing field. The potential of these convolutional neural network (CNN) models can be used to efficiently detect the complex DoS and DDoS by converting the network traffic dataset into images. Therefore, in this work, we proposed a methodology to convert the network traffic data into image form and trained a state-of-the-art CNN model, i.e., ResNet over the converted data. The proposed methodology accomplished 99.99\% accuracy for detecting the DoS and DDoS in case of binary classification. Furthermore, the proposed methodology achieved 87\% average precision for recognizing eleven types of DoS and DDoS attack patterns which is 9\% higher as compared to the state-of-the-art.
翻译:网络攻击的频率和强度随着互联网(IoT)装置的迅速增长而增加。最近,拒绝服务(DoS)和分布式拒绝服务(DDoS)攻击被报告为IoT网络中最常见的攻击。传统安全解决方案,如防火墙、入侵探测系统等,无法探测复杂的DoS和DDoS攻击,因为大多数这类方案根据静态预先确定的规则过滤正常和攻击交通。然而,这些解决办法如果与人工智能(AI)技术相结合,就会变得可靠和有效。在过去几年里,深层学习模型,特别是革命神经网络,由于其在图像处理领域的出色性能而变得十分重要。这些革命神经网络(CNN)模型的潜力可以通过将网络交通数据集转换成图像来有效探测复杂的DoS和DDoS。因此,我们在此工作中提出了将网络交通数据转换成图像形式的方法,并培训了一种状态的CNN模型,即ResNet对高端数据的转换。拟议的D-Net系统系统快速转换方法(Do-Do-Do-Do-Do-S 11)的精确度分类方法,在D-D攻击的平均类型中得到承认。
相关内容
微信扫码咨询专知VIP会员