Intrusion detection system to detect DDoS attack in gnutella hybrid P2P network

Mueen Uddin, Raed Alsaqour, Maha Abdelhaq

Research output: Contribution to journalArticle

13 Citations (Scopus)

Abstract

Background/Objectives Distributed Denial of Service (DDoS) attacks are an increasing threat to the Internet community. Intrusion Detection Systems (IDSs) have become a key component in ensuring the safety of systems and networks. As networks grow in size and speed, efficient scalable techniques should be available for IDSs. Gnutella is a Peer to-Peer (P2P) networking model that currently provides decentralized filesharing capabilities to its users but the distinction between server and client is pale. Due to Gnutella's dependence on a central unit, the program is vulnerable to security breaches. Methods/Statistical analysis: An IDS to detect DDoS attacks by simulating Artificial Immune System (AIS) is herein proposed. The proposed system uses an algorithm based on anomaly and signature-based detection mapped to AIS called "Generation of Detector (Genetic Algorithm)" to detect DDoS attacks. Each time an attack is identified, a new generation is added to the detectors dataset to detect the intrusions. Results: Simulation results show that the proposed method not only has adaptability, scalability, flexibility and variety but also has high accuracy and correctness. Conclusion/Application: The proposed algorithm efficiently reduces the false positives, thus the detection rate of intrusions is increased. Hence, the overall detection rate increases which ultimately increases the functional efficiency of the network to an acceptable level.

Original languageEnglish
Pages (from-to)71-83
Number of pages13
JournalIndian Journal of Science and Technology
Volume6
Issue number2
Publication statusPublished - Feb 2013

Fingerprint

Intrusion detection
Immune system
Detectors
Scalability
Statistical methods
Servers
Genetic algorithms
Internet
Denial-of-service attack

Keywords

  • Arti icial immune system
  • DDoS attack
  • Genetic algorithm
  • Gnutella hybrid P2P network
  • Intrusion detection system

ASJC Scopus subject areas

  • General

Cite this

Intrusion detection system to detect DDoS attack in gnutella hybrid P2P network. / Uddin, Mueen; Alsaqour, Raed; Abdelhaq, Maha.

In: Indian Journal of Science and Technology, Vol. 6, No. 2, 02.2013, p. 71-83.

Research output: Contribution to journalArticle

Uddin, Mueen ; Alsaqour, Raed ; Abdelhaq, Maha. / Intrusion detection system to detect DDoS attack in gnutella hybrid P2P network. In: Indian Journal of Science and Technology. 2013 ; Vol. 6, No. 2. pp. 71-83.
@article{acf620cb8d8446e4be189b75cc784e9c,
title = "Intrusion detection system to detect DDoS attack in gnutella hybrid P2P network",
abstract = "Background/Objectives Distributed Denial of Service (DDoS) attacks are an increasing threat to the Internet community. Intrusion Detection Systems (IDSs) have become a key component in ensuring the safety of systems and networks. As networks grow in size and speed, efficient scalable techniques should be available for IDSs. Gnutella is a Peer to-Peer (P2P) networking model that currently provides decentralized filesharing capabilities to its users but the distinction between server and client is pale. Due to Gnutella's dependence on a central unit, the program is vulnerable to security breaches. Methods/Statistical analysis: An IDS to detect DDoS attacks by simulating Artificial Immune System (AIS) is herein proposed. The proposed system uses an algorithm based on anomaly and signature-based detection mapped to AIS called {"}Generation of Detector (Genetic Algorithm){"} to detect DDoS attacks. Each time an attack is identified, a new generation is added to the detectors dataset to detect the intrusions. Results: Simulation results show that the proposed method not only has adaptability, scalability, flexibility and variety but also has high accuracy and correctness. Conclusion/Application: The proposed algorithm efficiently reduces the false positives, thus the detection rate of intrusions is increased. Hence, the overall detection rate increases which ultimately increases the functional efficiency of the network to an acceptable level.",
keywords = "Arti icial immune system, DDoS attack, Genetic algorithm, Gnutella hybrid P2P network, Intrusion detection system",
author = "Mueen Uddin and Raed Alsaqour and Maha Abdelhaq",
year = "2013",
month = "2",
language = "English",
volume = "6",
pages = "71--83",
journal = "Indian Journal of Science and Technology",
issn = "0974-6846",
publisher = "Indian Society for Education and Environment",
number = "2",

}

TY - JOUR

T1 - Intrusion detection system to detect DDoS attack in gnutella hybrid P2P network

AU - Uddin, Mueen

AU - Alsaqour, Raed

AU - Abdelhaq, Maha

PY - 2013/2

Y1 - 2013/2

N2 - Background/Objectives Distributed Denial of Service (DDoS) attacks are an increasing threat to the Internet community. Intrusion Detection Systems (IDSs) have become a key component in ensuring the safety of systems and networks. As networks grow in size and speed, efficient scalable techniques should be available for IDSs. Gnutella is a Peer to-Peer (P2P) networking model that currently provides decentralized filesharing capabilities to its users but the distinction between server and client is pale. Due to Gnutella's dependence on a central unit, the program is vulnerable to security breaches. Methods/Statistical analysis: An IDS to detect DDoS attacks by simulating Artificial Immune System (AIS) is herein proposed. The proposed system uses an algorithm based on anomaly and signature-based detection mapped to AIS called "Generation of Detector (Genetic Algorithm)" to detect DDoS attacks. Each time an attack is identified, a new generation is added to the detectors dataset to detect the intrusions. Results: Simulation results show that the proposed method not only has adaptability, scalability, flexibility and variety but also has high accuracy and correctness. Conclusion/Application: The proposed algorithm efficiently reduces the false positives, thus the detection rate of intrusions is increased. Hence, the overall detection rate increases which ultimately increases the functional efficiency of the network to an acceptable level.

AB - Background/Objectives Distributed Denial of Service (DDoS) attacks are an increasing threat to the Internet community. Intrusion Detection Systems (IDSs) have become a key component in ensuring the safety of systems and networks. As networks grow in size and speed, efficient scalable techniques should be available for IDSs. Gnutella is a Peer to-Peer (P2P) networking model that currently provides decentralized filesharing capabilities to its users but the distinction between server and client is pale. Due to Gnutella's dependence on a central unit, the program is vulnerable to security breaches. Methods/Statistical analysis: An IDS to detect DDoS attacks by simulating Artificial Immune System (AIS) is herein proposed. The proposed system uses an algorithm based on anomaly and signature-based detection mapped to AIS called "Generation of Detector (Genetic Algorithm)" to detect DDoS attacks. Each time an attack is identified, a new generation is added to the detectors dataset to detect the intrusions. Results: Simulation results show that the proposed method not only has adaptability, scalability, flexibility and variety but also has high accuracy and correctness. Conclusion/Application: The proposed algorithm efficiently reduces the false positives, thus the detection rate of intrusions is increased. Hence, the overall detection rate increases which ultimately increases the functional efficiency of the network to an acceptable level.

KW - Arti icial immune system

KW - DDoS attack

KW - Genetic algorithm

KW - Gnutella hybrid P2P network

KW - Intrusion detection system

UR - http://www.scopus.com/inward/record.url?scp=84874716764&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84874716764&partnerID=8YFLogxK

M3 - Article

VL - 6

SP - 71

EP - 83

JO - Indian Journal of Science and Technology

JF - Indian Journal of Science and Technology

SN - 0974-6846

IS - 2

ER -