@inproceedings{7484c8bc8c934aa5bedcc408487f5de5,
title = "Machine Learning Based DDoS Attack Detection from Source Side in Cloud",
abstract = "Denial of service (DOS) attacks are a serious threat to network security. These attacks are often sourced from virtual machines in the cloud, rather than from the attacker's own machine, to achieve anonymity and higher network bandwidth. Past research focused on analyzing traffic on the destination (victim's) side with predefined thresholds. These approaches have significant disadvantages. They are only passive defenses after the attack, they cannot use the outbound statistical features of attacks, and it is hard to trace back to the attacker with these approaches. In this paper, we propose a DOS attack detection system on the source side in the cloud, based on machine learning techniques. This system leverages statistical information from both the cloud server's hypervisor and the virtual machines, to prevent network packages from being sent out to the outside network. We evaluate nine machine learning algorithms and carefully compare their performance. Our experimental results show that more than 99.7% of four kinds of DOS attacks are successfully detected. Our approach does not degrade performance and can be easily extended to broader DOS attacks.",
keywords = "Cloud Computing, Cloud Provider, DDOS attack, Machine Learning, Virtual Machine Monitor",
author = "Zecheng He and Tianwei Zhang and Lee, {Ruby B.}",
note = "Publisher Copyright: {\textcopyright} 2017 IEEE.; 4th IEEE International Conference on Cyber Security and Cloud Computing, CSCloud 2017 and 3rd IEEE International Conference of Scalable and Smart Cloud, SSC 2017 ; Conference date: 26-06-2017 Through 28-06-2017",
year = "2017",
month = jul,
day = "20",
doi = "10.1109/CSCloud.2017.58",
language = "English (US)",
series = "Proceedings - 4th IEEE International Conference on Cyber Security and Cloud Computing, CSCloud 2017 and 3rd IEEE International Conference of Scalable and Smart Cloud, SSC 2017",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "114--120",
editor = "Meikang Qiu",
booktitle = "Proceedings - 4th IEEE International Conference on Cyber Security and Cloud Computing, CSCloud 2017 and 3rd IEEE International Conference of Scalable and Smart Cloud, SSC 2017",
address = "United States",
}