Cover Image

An intelligent DDoS attack detection tree-based model using Gini index feature selection method

Cyber security has recently garnered enormous attention due to the popularity of the Internet of Things (IoT), intelligent devices rapid growth, and a vast number of real-life applications. As a result, detecting threats and constructing an efficient Intrusion detection system (IDS) have become cruc...

Full description

Saved in:
Bibliographic Details
Main Authors: Bouke, Mohamed Aly, Abdullah, Azizol, ALshatebi, Sameer Hamoud, Abdullah, Mohd Taufik, Atigh, Hayate El
Format: Article
Published: Elsevier B.V. 2023
Online Access:http://psasir.upm.edu.my/id/eprint/106576/
https://www.sciencedirect.com/science/article/abs/pii/S0141933123000698?via%3Dihub
Tags: Add Tag
No Tags, Be the first to tag this record!
id my.upm.eprints.106576
record_format eprints
spelling my.upm.eprints.1065762024-10-21T01:53:15Z http://psasir.upm.edu.my/id/eprint/106576/ An intelligent DDoS attack detection tree-based model using Gini index feature selection method Bouke, Mohamed Aly Abdullah, Azizol ALshatebi, Sameer Hamoud Abdullah, Mohd Taufik Atigh, Hayate El Cyber security has recently garnered enormous attention due to the popularity of the Internet of Things (IoT), intelligent devices rapid growth, and a vast number of real-life applications. As a result, detecting threats and constructing an efficient Intrusion detection system (IDS) have become crucial in todays security requirements. Withal, the large amount of high dimensional data might influence detection effectiveness and raise the computation requirements. Artificial Intelligence (AI) has recently attracted much attention and is widely used to build intelligent IDSs to preserve data confidentiality, integrity, and availability. Distributed denial of service (DDoS) is a denial of service (DoS) variant mainly targeting asset availability. Preventing DoS at the network or infrastructure level typically depends on implementing an IDS. This paper proposes a novel intelligent DDoS attack detection model based on a Decision Tee (DT) algorithm and an enhanced Gini index feature selection method. Our approach is evaluated on the UNSW-NB15 dataset, which contains 1,140,045 samples and is more recent and comprehensive than those used in previous works. Our system achieved an overall accuracy of 98, outperforming baseline models that used more advanced algorithms such as Random Forest and XGBoost. Our enhanced Gini index feature selection method allowed us to select only 13 out of 45 security features, significantly reducing the data dimensionality and avoiding overfitting issues. Our model also has a lower false alarm rate, misclassifying only 2 of the testing instances. Our approach is, therefore, highly effective and efficient, with the potential to be used in real-world network security applications. Elsevier B.V. 2023-04 Article PeerReviewed Bouke, Mohamed Aly and Abdullah, Azizol and ALshatebi, Sameer Hamoud and Abdullah, Mohd Taufik and Atigh, Hayate El (2023) An intelligent DDoS attack detection tree-based model using Gini index feature selection method. Microprocessors and Microsystems, 98. art. no. 104823. pp. 1-10. ISSN 0141-9331 https://www.sciencedirect.com/science/article/abs/pii/S0141933123000698?via%3Dihub 10.1016/j.micpro.2023.104823
institution Universiti Putra Malaysia
building UPM Library
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universiti Putra Malaysia
content_source UPM Institutional Repository
url_provider http://psasir.upm.edu.my/
description Cyber security has recently garnered enormous attention due to the popularity of the Internet of Things (IoT), intelligent devices rapid growth, and a vast number of real-life applications. As a result, detecting threats and constructing an efficient Intrusion detection system (IDS) have become crucial in todays security requirements. Withal, the large amount of high dimensional data might influence detection effectiveness and raise the computation requirements. Artificial Intelligence (AI) has recently attracted much attention and is widely used to build intelligent IDSs to preserve data confidentiality, integrity, and availability. Distributed denial of service (DDoS) is a denial of service (DoS) variant mainly targeting asset availability. Preventing DoS at the network or infrastructure level typically depends on implementing an IDS. This paper proposes a novel intelligent DDoS attack detection model based on a Decision Tee (DT) algorithm and an enhanced Gini index feature selection method. Our approach is evaluated on the UNSW-NB15 dataset, which contains 1,140,045 samples and is more recent and comprehensive than those used in previous works. Our system achieved an overall accuracy of 98, outperforming baseline models that used more advanced algorithms such as Random Forest and XGBoost. Our enhanced Gini index feature selection method allowed us to select only 13 out of 45 security features, significantly reducing the data dimensionality and avoiding overfitting issues. Our model also has a lower false alarm rate, misclassifying only 2 of the testing instances. Our approach is, therefore, highly effective and efficient, with the potential to be used in real-world network security applications.
format Article
author Bouke, Mohamed Aly
Abdullah, Azizol
ALshatebi, Sameer Hamoud
Abdullah, Mohd Taufik
Atigh, Hayate El
spellingShingle Bouke, Mohamed Aly
Abdullah, Azizol
ALshatebi, Sameer Hamoud
Abdullah, Mohd Taufik
Atigh, Hayate El
An intelligent DDoS attack detection tree-based model using Gini index feature selection method
author_facet Bouke, Mohamed Aly
Abdullah, Azizol
ALshatebi, Sameer Hamoud
Abdullah, Mohd Taufik
Atigh, Hayate El
author_sort Bouke, Mohamed Aly
title An intelligent DDoS attack detection tree-based model using Gini index feature selection method
title_short An intelligent DDoS attack detection tree-based model using Gini index feature selection method
title_full An intelligent DDoS attack detection tree-based model using Gini index feature selection method
title_fullStr An intelligent DDoS attack detection tree-based model using Gini index feature selection method
title_full_unstemmed An intelligent DDoS attack detection tree-based model using Gini index feature selection method
title_sort intelligent ddos attack detection tree-based model using gini index feature selection method
publisher Elsevier B.V.
publishDate 2023
url http://psasir.upm.edu.my/id/eprint/106576/
https://www.sciencedirect.com/science/article/abs/pii/S0141933123000698?via%3Dihub
_version_ 1814054606839218176
score 13.214268

Similar Items