Research on Feature Construction for Polymorphous Clone of Distributed Reflection Denial of Service Attack Traffic
- DOI
- 10.2991/aeecs-18.2018.45How to use a DOI?
- Keywords
- DRDoS, Clone, Feature selection, Apriori, Filter, Wrapper.
- Abstract
Polymorphous clone of Distributed Reflective Denial of Service Attack traffic has great significance for DRDoS's demonstration, verification, defense, evaluation and scenarios that require DRDoS attack traffic. This paper studies a construction method of features in polymorphous clone of DRDoS attack traffic. Based on knowledge of information entropy and mutual information, traffic features were established from two perspectives of the content and statistical properties for clone of DRDoS attack traffic. It used a machine learning algorithm called Apriori, the filter feature selection and the wrapper mode of Random Generation plus Sequential Selection. By analysis of the NTP Distributed Reflective Denial of Service attack traffic which were collected and as the sample traffic, a feature set including 27 features are used as the attack traffic's features.
- Copyright
- © 2018, the Authors. Published by Atlantis Press.
- Open Access
- This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).
Cite this article
TY - CONF AU - Chanjuan Zhang AU - Xiaorui Gong AU - Zhenyu Song PY - 2018/03 DA - 2018/03 TI - Research on Feature Construction for Polymorphous Clone of Distributed Reflection Denial of Service Attack Traffic BT - Proceedings of the 2018 2nd International Conference on Advances in Energy, Environment and Chemical Science (AEECS 2018) PB - Atlantis Press SP - 265 EP - 271 SN - 2352-5401 UR - https://doi.org/10.2991/aeecs-18.2018.45 DO - 10.2991/aeecs-18.2018.45 ID - Zhang2018/03 ER -