Mathematical and Logical Modeling of DDoS Attacks: A Hybrid Approach Using Propositional Logic and Machine Learning
Keywords:
First-Order Logic (FOL), Inference mechanism, Knowledge representation, Machine learning, PEAS model, Propositional logic, Resolution handling, Traffic patternsAbstract
As cloud hosting continues to dominate, a major drawback is the increased vulnerability to Distributed Denial-of-Service (DDoS) attacks, which threaten the availability and reliability of internet services. This paper proposes a new hybrid DDoS detection and mitigation technique that combines mathematical logic and machine learning techniques. This frame uses propositional logic and FOL to speak of traffic patterns that are DDoS attacks, which makes it possible to reason automatically to classify attacks. Other machine learning models, including Logistic Regression, Decision Tree, Random Forest, and Deep learning architectures such as CNN and RNN, operate to achieve a higher rate of detection of anomalous traffic patterns. The approach entails real-time traffic analysis-based inference mechanisms on attack detection and logical resolution handling to minimize false positives. The results demonstrate that most of the examined models reach high accuracy on detection, having achieved perfect classification accuracy on Decision Tree and Random Forest. It was the deep learning paradigm that proceeds to achieve above 99%. The study underscored the success associated with fused logical reasoning blended towards data-driven approaches for transfer-cloud security from availability issues down to threat mitigation in their active line of operations. The prospects of the future will circle around equipping users with learning capability enough to counter DDoS experimental attack evasion maneuvers.
References
A. A. Najar and S. Manohar Naik, “DDoS attack detection using MLP and Random Forest Algorithms,” International Journal of Information Technology, vol. 14, no. 5, pp. 2317–2327, Jun. 2022, doi: https://doi.org/10.1007/s41870-022-01003-x
S. Haider, A. Akhunzada, G. Ahmed and M. Raza, "Deep Learning based Ensemble Convolutional Neural Network Solution for Distributed Denial of Service Detection in SDNs," 2019 UK/ China Emerging Technologies (UCET), Glasgow, UK, 2019, pp. 1-4, doi: https://doi.org/10.1109/UCET.2019.8881856
M. Al-Hawawreh and E. Sitnikova, "Developing a Security Testbed for Industrial Internet of Things," in IEEE Internet of Things Journal, vol. 8, no. 7, pp. 5558-5573, Apr. 2021, doi: https://doi.org/10.1109/JIOT.2020.3032093
S. Dong, Y. Xia and T. Peng, "Network Abnormal Traffic Detection Model Based on Semi-Supervised Deep Reinforcement Learning," in IEEE Transactions on Network and Service Management, vol. 18, no. 4, pp. 4197-4212, Dec. 2021, doi: https://doi.org/10.1109/TNSM.2021.3120804
H. Liu and B. Lang, “Machine Learning and Deep Learning Methods for Intrusion Detection Systems: A Survey,” Applied Sciences, vol. 9, no. 20, p. 4396, Oct. 2019, doi: https://doi.org/10.3390/app9204396
S. Dong and M. Sarem, "DDoS Attack Detection Method Based on Improved KNN With the Degree of DDoS Attack in Software-Defined Networks," in IEEE Access, vol. 8, pp. 5039-5048, 2020, doi: https://doi.org/10.1109/ACCESS.2019.2963077
J. Hussain and V. Hnamte, "Deep Learning Based Intrusion Detection System: Software Defined Network," 2021 Asian Conference on Innovation in Technology (ASIANCON), PUNE, India, 2021, pp. 1-6, doi: https://doi.org/10.1109/asiancon51346.2021.9544913
M. AL-Hawawreh, N. Moustafa, and E. Sitnikova, “Identification of malicious activities in industrial internet of things based on deep learning models,” Journal of Information Security and Applications, vol. 41, pp. 1–11, Aug. 2018, doi: https://doi.org/10.1016/j.jisa.2018.05.002
G. De La Torre Parra, P. Rad, K.-K. R. Choo, and N. Beebe, “Detecting Internet of Things attacks using distributed deep learning,” Journal of Network and Computer Applications, vol. 163, p. 102662, Aug. 2020, doi: https://doi.org/10.1016/j.jnca.2020.102662.
D. Akgun, S. Hizal, And U. Cavusoglu, “A New DDoS Attacks Intrusion Detection Model Based on Deep Learning for Cybersecurity,” Computers & Security, p. 102748, May 2022, doi: https://doi.org/10.1016/j.cose.2022.102748.
A. E. Cil, K. Yildiz, and A. Buldu, “Detection of DDoS attacks with feed forward based deep neural network model,” Expert Systems with Applications, vol. 169, p. 114520, May 2021, doi: https://doi.org/10.1016/j.eswa.2020.114520
M. A. Ferrag, L. Maglaras, S. Moschoyiannis, and H. Janicke, “Deep learning for cyber security intrusion detection: Approaches, datasets, and comparative study,” Journal of Information Security and Applications, vol. 50, p. 102419, Feb. 2020, doi: https://doi.org/10.1016/j.jisa.2019.102419
