• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

高速网络分布式拒绝服务攻击检测:一项综述。

High-Speed Network DDoS Attack Detection: A Survey.

作者信息

Haseeb-Ur-Rehman Rana M Abdul, Aman Azana Hafizah Mohd, Hasan Mohammad Kamrul, Ariffin Khairul Akram Zainol, Namoun Abdallah, Tufail Ali, Kim Ki-Hyung

机构信息

Center for Cyber Security, Faculty of Information Science and Technology, University Kebangsaan Malaysia (UKM), Bangi 43600, Malaysia.

Faculty of Computer and Information Systems, Islamic University of Madinah, Madinah 42351, Saudi Arabia.

出版信息

Sensors (Basel). 2023 Aug 1;23(15):6850. doi: 10.3390/s23156850.

DOI:10.3390/s23156850
PMID:37571632
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC10422513/
Abstract

Having a large number of device connections provides attackers with multiple ways to attack a network. This situation can lead to distributed denial-of-service (DDoS) attacks, which can cause fiscal harm and corrupt data. Thus, irregularity detection in traffic data is crucial in detecting malicious behavior in a network, which is essential for network security and the integrity of modern Cyber-Physical Systems (CPS). Nevertheless, studies have shown that current techniques are ineffective at detecting DDoS attacks on networks, especially in the case of high-speed networks (HSN), as detecting attacks on the latter is very complex due to their fast packet processing. This review aims to study and compare different approaches to detecting DDoS attacks, using machine learning (ML) techniques such as k-means, K-Nearest Neighbors (KNN), and Naive Bayes (NB) used in intrusion detection systems (IDSs) and flow-based IDSs, and expresses data paths for packet filtering for HSN performance. This review highlights the high-speed network accuracy evaluation factors, provides a detailed DDoS attack taxonomy, and classifies detection techniques. Moreover, the existing literature is inspected through a qualitative analysis, with respect to the factors extracted from the presented taxonomy of irregular traffic pattern detection. Different research directions are suggested to support researchers in identifying and designing the optimal solution by highlighting the issues and challenges of DDoS attacks on high-speed networks.

摘要

拥有大量设备连接为攻击者提供了多种攻击网络的方式。这种情况可能导致分布式拒绝服务(DDoS)攻击,从而造成财务损失并破坏数据。因此,流量数据中的异常检测对于检测网络中的恶意行为至关重要,这对于网络安全和现代网络物理系统(CPS)的完整性至关重要。然而,研究表明,当前技术在检测网络DDoS攻击方面效率低下,尤其是在高速网络(HSN)的情况下,因为由于其快速的数据包处理,检测后者的攻击非常复杂。本综述旨在研究和比较使用机器学习(ML)技术(如用于入侵检测系统(IDS)和基于流的IDS中的k均值、K近邻(KNN)和朴素贝叶斯(NB))检测DDoS攻击的不同方法,并表达用于HSN性能的数据包过滤的数据路径。本综述突出了高速网络准确性评估因素,提供了详细的DDoS攻击分类法,并对检测技术进行了分类。此外,通过定性分析检查现有文献,分析从所提出的不规则流量模式检测分类法中提取的因素。通过突出高速网络上DDoS攻击的问题和挑战,提出了不同的研究方向,以支持研究人员识别和设计最佳解决方案。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/84a080269e7a/sensors-23-06850-g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/36cc4963507c/sensors-23-06850-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/95e85efb80b6/sensors-23-06850-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/26454f7fcc42/sensors-23-06850-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/53ba45173a88/sensors-23-06850-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/4e6f209f48a0/sensors-23-06850-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/afae05d43e8f/sensors-23-06850-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/84a080269e7a/sensors-23-06850-g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/36cc4963507c/sensors-23-06850-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/95e85efb80b6/sensors-23-06850-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/26454f7fcc42/sensors-23-06850-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/53ba45173a88/sensors-23-06850-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/4e6f209f48a0/sensors-23-06850-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/afae05d43e8f/sensors-23-06850-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/24e1/10422513/84a080269e7a/sensors-23-06850-g007.jpg

相似文献

1
High-Speed Network DDoS Attack Detection: A Survey.高速网络分布式拒绝服务攻击检测:一项综述。
Sensors (Basel). 2023 Aug 1;23(15):6850. doi: 10.3390/s23156850.
2
Adaptive Machine Learning Based Distributed Denial-of-Services Attacks Detection and Mitigation System for SDN-Enabled IoT.基于自适应机器学习的支持软件定义网络的物联网分布式拒绝服务攻击检测与缓解系统
Sensors (Basel). 2022 Mar 31;22(7):2697. doi: 10.3390/s22072697.
3
Software-Defined-Networking-Based One-versus-Rest Strategy for Detecting and Mitigating Distributed Denial-of-Service Attacks in Smart Home Internet of Things Devices.基于软件定义网络的一对多策略,用于检测和缓解智能家居物联网设备中的分布式拒绝服务攻击
Sensors (Basel). 2024 Aug 3;24(15):5022. doi: 10.3390/s24155022.
4
Distributed Denial of Service Attack Detection in Network Traffic Using Deep Learning Algorithm.基于深度学习算法的网络流量分布式拒绝服务攻击检测
Sensors (Basel). 2023 Oct 23;23(20):8642. doi: 10.3390/s23208642.
5
Multi-Stage Learning Framework Using Convolutional Neural Network and Decision Tree-Based Classification for Detection of DDoS Pandemic Attacks in SDN-Based SCADA Systems.基于卷积神经网络和决策树分类的多阶段学习框架,用于检测基于软件定义网络的监控与数据采集系统中的分布式拒绝服务大规模攻击。
Sensors (Basel). 2024 Feb 5;24(3):1040. doi: 10.3390/s24031040.
6
Ensemble Learning Framework for DDoS Detection in SDN-Based SCADA Systems.基于软件定义网络(SDN)的监控与数据采集(SCADA)系统中分布式拒绝服务(DDoS)检测的集成学习框架
Sensors (Basel). 2023 Dec 27;24(1):155. doi: 10.3390/s24010155.
7
DDoS attack detection in smart grid network using reconstructive machine learning models.基于重构机器学习模型的智能电网网络中分布式拒绝服务攻击检测
PeerJ Comput Sci. 2024 Jan 9;10:e1784. doi: 10.7717/peerj-cs.1784. eCollection 2024.
8
Strengthening network DDOS attack detection in heterogeneous IoT environment with federated XAI learning approach.使用联邦可解释人工智能学习方法加强异构物联网环境中的网络分布式拒绝服务攻击检测。
Sci Rep. 2024 Oct 17;14(1):24322. doi: 10.1038/s41598-024-76016-6.
9
GLD-Net: Deep Learning to Detect DDoS Attack via Topological and Traffic Feature Fusion.GLD-Net:基于拓扑和流量特征融合的深度学习 DDoS 攻击检测
Comput Intell Neurosci. 2022 Aug 16;2022:4611331. doi: 10.1155/2022/4611331. eCollection 2022.
10
Conditional Tabular Generative Adversarial Based Intrusion Detection System for Detecting Ddos and Dos Attacks on the Internet of Things Networks.基于条件表格生成对抗的物联网网络 DDoS 和 DOS 攻击入侵检测系统。
Sensors (Basel). 2023 Jun 16;23(12):5644. doi: 10.3390/s23125644.

引用本文的文献

1
Detecting DoS Attacks through Synthetic User Behavior with Long Short-Term Memory Network.通过长短时记忆网络的合成用户行为检测拒绝服务攻击。
Sensors (Basel). 2024 Jun 8;24(12):3735. doi: 10.3390/s24123735.
2
Multi-Objective Task-Aware Offloading and Scheduling Framework for Internet of Things Logistics.面向物联网物流的多目标任务感知卸载与调度框架
Sensors (Basel). 2024 Apr 9;24(8):2381. doi: 10.3390/s24082381.

本文引用的文献

1
Ubiquitous and smart healthcare monitoring frameworks based on machine learning: A comprehensive review.基于机器学习的无处不在且智能的医疗保健监测框架:全面回顾。
Artif Intell Med. 2022 Dec;134:102431. doi: 10.1016/j.artmed.2022.102431. Epub 2022 Oct 22.
2
SELWAK: A Secure and Efficient Lightweight and Anonymous Authentication and Key Establishment Scheme for IoT Based Vehicular Ad hoc Networks.SELWAK:一种用于基于物联网的车联网的安全高效轻量级匿名认证和密钥建立方案。
Sensors (Basel). 2022 May 26;22(11):4019. doi: 10.3390/s22114019.
3
VMFCVD: An Optimized Framework to Combat Volumetric DDoS Attacks using Machine Learning.
VMFCVD:一种使用机器学习对抗体积型分布式拒绝服务攻击的优化框架。
Arab J Sci Eng. 2022;47(8):9965-9983. doi: 10.1007/s13369-021-06484-9. Epub 2022 Jan 23.
4
Validation of snoring detection using a smartphone app.使用智能手机应用程序验证打鼾检测。
Sleep Breath. 2022 Mar;26(1):81-87. doi: 10.1007/s11325-021-02359-3. Epub 2021 Apr 3.
5
Data-Driven Cyber Security in Perspective-Intelligent Traffic Analysis.透视数据驱动的网络安全——智能交通分析
IEEE Trans Cybern. 2020 Jul;50(7):3081-3093. doi: 10.1109/TCYB.2019.2940940. Epub 2019 Oct 15.