An enhanced mechanism for detection of Domain Name System‐based distributed reflection denial of service attacks depending on modified metaheuristic algorithms and adaptive thresholding techniques. Issue 5 (10th July 2022)
- Record Type:
- Journal Article
- Title:
- An enhanced mechanism for detection of Domain Name System‐based distributed reflection denial of service attacks depending on modified metaheuristic algorithms and adaptive thresholding techniques. Issue 5 (10th July 2022)
- Main Title:
- An enhanced mechanism for detection of Domain Name System‐based distributed reflection denial of service attacks depending on modified metaheuristic algorithms and adaptive thresholding techniques
- Authors:
- Manickam, Selvakumar
Rahef Nuiaa, Riyadh
Hakem Alsaeedi, Ali
Alyasseri, Zaid Abdi Alkareem
Mohammed, Mazin Abed
Jaber, Mustafa Musa - Abstract:
- Abstract: The rapid growth of the number of devices connected to the Internet and the increasing demand for electronic services have led to a huge growth in the number of cyberattacks targeting cyberspace and the development of their methodology. Therefore, there must be mechanisms, laws, and rules regulating the work of these applications and protecting them from electronic attacks. The Domain Name System (DNS) has several vulnerabilities that can be exploited by cyber attackers to launch their attacks, and the most important one of these vulnerabilities is that the response size is always greater than the size of the request. According to reports published by numerous security companies, distributed reflection denial of service (DRDoS) attacks against DNS are regarded as one of the most hazardous and rapidly spreading threats in recent years. An enhanced mechanism that is able to detect DNS‐based DRDoS attacks that exploit the DNS responses to launch their attacks is proposed. The proposed mechanism was designed based on modified metaheuristic optimization algorithms and an adaptive threshold. This mechanism consists of two models and four stages. The first model is called 'Proactive Feature Selection, ' and the second model is called 'Evolving Dynamic Fuzzy Clustering.' The four stages of the proposed mechanism are: the preprocessing stage, feature selection stage, detection stage, and enhancement stage. The new mechanism has been implemented on the CICDDoS2019 standardAbstract: The rapid growth of the number of devices connected to the Internet and the increasing demand for electronic services have led to a huge growth in the number of cyberattacks targeting cyberspace and the development of their methodology. Therefore, there must be mechanisms, laws, and rules regulating the work of these applications and protecting them from electronic attacks. The Domain Name System (DNS) has several vulnerabilities that can be exploited by cyber attackers to launch their attacks, and the most important one of these vulnerabilities is that the response size is always greater than the size of the request. According to reports published by numerous security companies, distributed reflection denial of service (DRDoS) attacks against DNS are regarded as one of the most hazardous and rapidly spreading threats in recent years. An enhanced mechanism that is able to detect DNS‐based DRDoS attacks that exploit the DNS responses to launch their attacks is proposed. The proposed mechanism was designed based on modified metaheuristic optimization algorithms and an adaptive threshold. This mechanism consists of two models and four stages. The first model is called 'Proactive Feature Selection, ' and the second model is called 'Evolving Dynamic Fuzzy Clustering.' The four stages of the proposed mechanism are: the preprocessing stage, feature selection stage, detection stage, and enhancement stage. The new mechanism has been implemented on the CICDDoS2019 standard dataset and achieves a detection accuracy of 95.44% with a false‐positive rate of 0.22%. The results show that the new mechanism is better than others depending on the detection accuracy and false positives. … (more)
- Is Part Of:
- IET networks. Volume 11:Issue 5(2022)
- Journal:
- IET networks
- Issue:
- Volume 11:Issue 5(2022)
- Issue Display:
- Volume 11, Issue 5 (2022)
- Year:
- 2022
- Volume:
- 11
- Issue:
- 5
- Issue Sort Value:
- 2022-0011-0005-0000
- Page Start:
- 169
- Page End:
- 181
- Publication Date:
- 2022-07-10
- Subjects:
- Computer network architectures -- Periodicals
Computer network protocols -- Periodicals
Information networks -- Periodicals
Telecommunication systems -- Periodicals
004.605 - Journal URLs:
- http://digital-library.theiet.org/IET-NET ↗
http://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6072580 ↗
https://ietresearch.onlinelibrary.wiley.com/journal/20474962 ↗
http://ieeexplore.ieee.org/Xplore/home.jsp ↗ - DOI:
- 10.1049/ntw2.12043 ↗
- Languages:
- English
- ISSNs:
- 2047-4954
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 4363.252870
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 23433.xml