An approach to configuring CatBoost for advanced detection of DoS and DDoS attacks in network traffic-Reference-Cited by-同舟云学术

An approach to configuring CatBoost for advanced detection of DoS and DDoS attacks in network traffic

Published:2024-07-29 Issue:3 Volume:2024 Page:64-74
ISSN:2072-9502
Container-title:Vestnik of Astrakhan State Technical University. Series: Management, computer science and informatics
language:en
Short-container-title:

Author:

Hajjouz Abdulkader¹,Avksent'eva Elena Yur'evna¹

Affiliation:

1. ITMO University

Abstract

In the ever-evolving landscape of network security, the sophistication of cyber-attacks, especially Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks, poses a formidable challenge to intrusion detection systems. Recognizing the longstanding application of CatBoost in various domains, this study explores its novel optimization for network intrusion detection, a critical area in need of advanced solutions. Leveraging the strengths of CatBoost in handling categorical data and imbalanced datasets, we meticulously adapt the classifier to meet the complex demands of distinguishing between DoS, DDoS, and benign traffic within the comprehensive CICIDS2017 and CSE-CIC-IDS2018 datasets. This research is an attempt to refine the learning efficiency and detection capabilities of CatBoost through the implementation of advanced feature selection and data preparation, contributing to the field by improving detection accuracy within real-time intrusion detection systems. The results show a notable improvement in performance, underscoring the classifier's role in advancing cybersecurity measures. Furthermore, the study paves the way for future exploration into adversarial machine learning and automated feature engineering, fortifying the resilience and adaptability of intrusion detection systems against the backdrop of a rapidly changing cyber threat landscape. These efforts provide solid approaches to address the current challenges in network security, signaling a move towards more refined and dependable intrusion detection methods.

Publisher

Astrakhan State Technical University

Reference13 articles.

1. Huseinović A., Mrdović S., Bicakci K., Uludag S. A Survey of Denial-of-Service Attacks and Solutions in the Smart Grid // IEEE Access. 2020. V. 8. P. 177447–177470., Huseinović A., Mrdović S., Bicakci K., Uludag S. A Survey of Denial-of-Service Attacks and Solutions in the Smart Grid. IEEE Access, 2020, vol. 8, pp. 177447-177470.

2. Tandon R. A Survey of Distributed Denial of Service Attacks and Defenses // arXiv preprint. 2020. arXiv:2008.01345., Tandon R. A Survey of Distributed Denial of Service Attacks and Defenses. arXiv preprint, 2020, arXiv:2008.01345.

3. Li Y., Liu Q. A comprehensive review study of cyber-attacks and cyber security; Emerging trends and recent developments // Energy Reports. 2021. V. 7. P. 8176–8186., Li Y., Liu Q. A comprehensive review study of cyberat-tacks and cyber security; Emerging trends and recent developments. Energy Reports, 2021, vol. 7, pp. 8176-8186.

4. Karatas G., Demir O., Sahingoz O. K. Increasing the Performance of Machine Learning-Based IDSs on an Imbalanced and Up-to-Date Dataset // IEEE Access. 2020. V. 8. P. 32150–32162., Karatas G., Demir O., Sahingoz O. K. Increasing the Performance of Machine Learning-Based IDSs on an Imbalanced and Up-to-Date Dataset. IEEE Access, 2020, vol. 8, pp. 32150-32162.

5. Bhati N. S., Khari M. A New Intrusion Detection Scheme Using CatBoost Classifier // Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering. 2021. P. 169–176., Bhati N. S., Khari M. A New Intrusion Detection Scheme Using CatBoost Classifier. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, 2021, pp. 169-176.