Optimization Accuracy of Distributed Denial of Service Attacks in Cybersecurity based on Machine Learning
Main Article Content
Abstract
Distributed Denial of Service (DDoS) attacks remain one of the most disruptive threats in modern cybersecurity, causing severe service outages and financial losses across networked systems. This study presents an optimized machine learning-based framework for the accurate detection and classification of DDoS attacks using four widely adopted algorithms: Logistic Regression (LR), Decision Tree (DT), Random Forest (RF), and Extreme Gradient Boosting (XGBoost). The proposed approach emphasizes improving detection accuracy through effective data preprocessing, feature selection, and model tuning techniques. A benchmark network traffic dataset is utilized, where features are normalized and transformed to enhance model performance. Comparative analysis is conducted using key evaluation metrics, including training accuracy, testing accuracy, precision, and recall, to ensure robust and unbiased assessment. Experimental results demonstrate that ensemble-based models, particularly Random Forest and XGBoost, significantly outperform traditional methods such as Logistic Regression and Decision Tree in terms of accuracy and generalization capability. Among all models, XGBoost achieves the highest detection accuracy with improved precision and recall, indicating its effectiveness in handling complex and imbalanced traffic patterns. The findings highlight the importance of optimized machine learning techniques in strengthening intrusion detection systems and mitigating DDoS threats in real-time environments. This research contributes to the development of intelligent, scalable, and efficient cybersecurity solutions capable of enhancing network resilience against evolving attack vectors.
Article Details
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
References
A. A. Alashhab, M. S. Zahid, B. Isyaku, A. A. Elnour, W. Nagmeldin, and A. Abdelmaboud, “Enhancing DDoS Attack Detection and Mitigation in SDN Using an Ensemble Online Machine Learning Model,” IEEE Access, vol. 12, pp. 51630–51649, Apr. 2024.
A. Hussain, E. M. Tordera, X. Masip-Bruin, and H. C. Leligou, “Rule-Based With Machine Learning IDS for DDoS Attack Detection in Cyber-Physical Production Systems (CPPS),” IEEE Access, vol. 12, pp. 114894–114911, Aug. 2024.
C. S. Shieh, F.-A. Ho, M.-F. Horng, T.-T. Nguyen, and P. Chakrabarti, “Open-Set Recognition in Unknown DDoS Attack Detection With Reciprocal Points Learning,” IEEE Access, vol. 12, pp. 56461–56476, Apr. 2024.
S. Naiem, A. E. Khedr, A. M. Idrees, and M. I. Marie, “Enhancing the Efficiency of Gaussian Naïve Bayes Machine Learning Classifier in the Detection of DDoS in Cloud Computing,” IEEE Access, vol. 11, pp. 124597–124608, Oct. 2023.
G. W. de Oliveira, M. Nogueira, A. L. dos Santos, and D. M. Batista, “Intelligent VNF Placement to Mitigate DDoS Attacks on Industrial IoT,” IEEE Trans. Network and Service Management, vol. 20, no. 2, pp. 1319–1331, Jun. 2023.
K. Muthamil Sudar, M. Beulah and P. Deepalakshmi, “Detection of Distributed Denial of Service Attacks in SDN using Machine learning techniques”, International Conference on Computer Communication and Informatics (ICCCI), Jan. 27 – 29, 2021, Coimbatore, INDIA.
Muthamil Sudar, K., & Deepalakshmi, P. (2020). A two level security mechanism to detect a DDoS flooding attack in software-defined networks using entropy-based and C4. 5 technique. Journal of High Speed Networks, (Preprint), 1- 22.
Dong, S., & Sarem, M. (2019). DDoS Attack Detection Method Based on Improved KNN With the Degree of DDoS Attack in Software-Defined Networks. IEEE Access, 8, 5039-5048.
Dong, S., Abbas, K., & Jain, R. (2019). A survey on distributed denial of service (DDoS) attacks in SDN and cloud computing environments. IEEE Access, 7, 80813- 80828.
Gu, Y., Li, K., Guo, Z., & Wang, Y. (2019). Semisupervised K-means DDoS detection method using hybrid feature selection algorithm. IEEE Access, 7, 64351- 64365.
A. Raghavan, F. D. Troia, and M. Stamp, ``Hidden Markov models with random restarts versus boosting for malware detection,'' J. Comput. Virol. Hacking Techn., vol. 15, no. 2, pp. 97107, Jun. 2019.
T. Young, D. Hazarika, S. Poria, and E. Cambria, ``Recent trends in deep learning based natural language processing [review article],'' IEEE Comput. Intell. Mag., vol. 13, no. 3, pp. 5575, Aug. 2018.
X. Lei and Y. Xie, ``Improved XGBoost model based on genetic algorithm for hypertension recipe recognition,'' Comput. Sci, vol. 45, pp. 476481, 2018.
Y. Guo, Y. Liu, A. Oerlemans, S. Lao, S. Wu, and M. S. Lew, ``Deep learning for visual understanding: A review,'' Neurocomputing, vol. 187, pp. 2748, Apr. 2016.
Abduvaliyev, A., Pathan, A.-S. K., Zhou, J., Roman, R., and Wong, W.-C. “On the Vital areas of Intrusion Detection Systems in Wireless Sensor Networks”, IEEE Communications Surveys & Tutorials, Vol. 15, Issue 3, pp. no. 1223–1237, 2015.