Статья

Developing Realistic Distributed Denial of Service (DDoS) Attack Dataset and Taxonomy

Iman SharafaldinCanadian Institute for Cybersecurity (CIC), University of New Brunswick (UNB), Fredericton, NB, CanadaArash Habibi LashkariCanadian Institute for Cybersecurity (CIC), University of New Brunswick (UNB), Fredericton, NB, CanadaSaqib HakakCanadian Institute for Cybersecurity (CIC), University of New Brunswick (UNB), Fredericton, NB, CanadaAli A. GhorbaniCanadian Institute for Cybersecurity (CIC), University of New Brunswick (UNB), Fredericton, NB, Canada

2019en

ABI

Аннотация

Distributed Denial of Service (DDoS) attack is a menace to network security that aims at exhausting the target networks with malicious traffic. Although many statistical methods have been designed for DDoS attack detection, designing a real-time detector with low computational overhead is still one of the main concerns. On the other hand, the evaluation of new detection algorithms and techniques heavily relies on the existence of well-designed datasets. In this paper, first, we review the existing datasets comprehensively and propose a new taxonomy for DDoS attacks. Secondly, we generate a new dataset, namely CICDDoS2019, which remedies all current shortcomings. Thirdly, using the generated dataset, we propose a new detection and family classificaiton approach based on a set of network flow features. Finally, we provide the most important feature sets to detect different types of DDoS attacks with their corresponding weights.

Перевод пока недоступен

Идентификаторы

DOI: 10.1109/ccst.2019.8888419

Цитирования и источники

Цитирований: 4Использованных источников: 0

Показатели — AkademScholar