Using learning time as metrics: an artificial intelligence driven risk assess framework to evaluate DDoS cyber attack-Reference-Cited by-同舟云学术

Using learning time as metrics: an artificial intelligence driven risk assess framework to evaluate DDoS cyber attack

Published:2021-04-12 Issue:4 Volume:40 Page:7691-7699
ISSN:1064-1246
Container-title:Journal of Intelligent & Fuzzy Systems
language:
Short-container-title:IFS

Author:

Chen Yen-Hung¹,Chang Arthur²,Huang ChunWei³

Affiliation:

1. Department of Information Management, National Taipei University of Nursing and Health Sciences, Taipei, Taiwan

2. Bachelor Program in Interdisciplinary Studies, National Yunlin University of Science and Technology, Yunlin, Taiwan

3. Department of Information Management, National Taiwan University of Science and Technology, Taipei, Taiwan

Abstract

The cloud computing and Internet of Things (IoT) have become two key technologies to meet future business requirements. However, a massive scale of Distributed Denial-of-Service (DDoS) has been widely applied to congest network critical links and to paralyze the cloud and IoT service. This is mainly due to DDoS is easily implemented, obfuscated, and occulted by launching large-scale legitimate low-speed flows and rolling target links to paralyze target network areas. Many metrics and risk access management frameworks to evaluate the impact of DDoS are proposed. However, they all lack time granularity to evaluate the cost of different scales of attacks in IoT or large-scale network structure. This study proposes an AI Driven Evaluation framework, called ADE, that applies Convolution Neural Networks to statistically evaluate the network status through end-to-end functionality (Input: network status; Output: DDoS detected or not) without any manual intervention. ADE provides quantitative security risk analysis by using learning time as the control variable, network structure as the independent variable, and time to identify DDoS as the dependent variable. The learning time to detect DDoS event and recover the system is then applied to evaluate the scale of this DDoS, the reasonability of the regulated RTO, and the vulnerability of the current net-work topology and the improvement due to the new security solution. The experiment results demonstrate the contributions of ADE are (1) providing objective and quantitative analytical security risk assessment indicator, (2) providing an autonomic DDoS defense framework without any manual intervention which allows cloud computing and Internet of Things company focuses on their service and leaves security defending to ADE, and (3) demonstrating the possibility of AI assisted risk assessment which enables security defense solution buyer with less security domain experts to evaluate suitable network defense strategy.

Publisher

IOS Press

Subject

Artificial Intelligence,General Engineering,Statistics and Probability

Reference4 articles.

1. Network topology effects on the detectability of crossfire attacks;Liaskos;IEEE Transactions on Information Forensics and Security,2018

2. Realtime DDoS defense using cots sdn switches via adaptive correlation analysis;Zheng;IEEE Transactions on Information Forensics and Security

3. Enhancing security levels at isp server using multiple security techniques with proposed crypo application;Rasal;International Journal of Engineering and Technology Innovation,2019

4. Scalable load balancing approach for cloud environment;Jain;International Journal of Engineering and Technology Innovation,2017

Cited by 2 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Sliding mode control for nonlinear semi-Markov jump systems with cyber attacks via fuzzy logic;Journal of Intelligent & Fuzzy Systems;2024-04-18

2. A Deep Learning Methodology to Detect Trojaned AI-based DDoS Defend Model;2022 8th International Conference on Automation, Robotics and Applications (ICARA);2022-02-18