检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:Adnan Hasan Bdair Aighuraibawi Selvakumar Manickam Rosni Abdullah Zaid Abdi Alkareem Alyasseri Ayman Khallel Dilovan Asaad Zebari Hussam Mohammed Jasim Mazin Mohammed Abed Zainb Hussein Arif
机构地区:[1]National Advanced IPv6 Centre(NAv6),Universiti Sains Malaysia,Penang,11800,Malaysia [2]Baghdad College of Economic Sciences University,Baghdad,Iraq [3]School of Computer Sciences,Universiti Sains Malays,Penang,11800,Malaysia [4]Information Technology Research and Development Center,University of Kufa,Najaf,Iraq [5]College of Engineering,University of Warith Al-Anbiyaa,Karbala,Iraq [6]Faculty of Computing and Informatics,Universiti Malaysia Sabah,Sabah,Malaysia [7]Business Administration,College of Administration and Financial Sciences,Imam Ja’afar Al-Sadiq University,Baghdad,10001,Iraq [8]College of Computer Science and Information Technology,University of Anbar,Ramadi Anbar,Iraq [9]Department of Computer Science,College of Science,Nawroz University,Duhok,42001,Kurdistan Region,Iraq
出 处:《Computer Systems Science & Engineering》2023年第10期553-574,共22页计算机系统科学与工程(英文)
摘 要:Internet Protocol version 6(IPv6)is the latest version of IP that goal to host 3.4×10^(38)unique IP addresses of devices in the network.IPv6 has introduced new features like Neighbour Discovery Protocol(NDP)and Address Auto-configuration Scheme.IPv6 needed several protocols like the Address Auto-configuration Scheme and Internet Control Message Protocol(ICMPv6).IPv6 is vulnerable to numerous attacks like Denial of Service(DoS)and Distributed Denial of Service(DDoS)which is one of the most dangerous attacks executed through ICMPv6 messages that impose security and financial implications.Therefore,an Intrusion Detection System(IDS)is a monitoring system of the security of a network that detects suspicious activities and deals with amassive amount of data comprised of repetitive and inappropriate features which affect the detection rate.A feature selection(FS)technique helps to reduce the computation time and complexity by selecting the optimum subset of features.This paper proposes a method for detecting DDoS flooding attacks(FA)based on ICMPv6 messages using a Binary Flower PollinationAlgorithm(BFPA-FA).The proposed method(BFPA-FA)employs FS technology with a support vector machine(SVM)to identify the most relevant,influential features.Moreover,The ICMPv6-DDoS dataset was used to demonstrate the effectiveness of the proposed method through different attack scenarios.The results show that the proposed method BFPAFA achieved the best accuracy rate(97.96%)for the ICMPv6 DDoS detection with a reduced number of features(9)to half the total(19)features.The proven proposed method BFPA-FAis effective in the ICMPv6 DDoS attacks via IDS.
关 键 词:IPv6 ICMPV6 DDoS feature selection flower pollination algorithm anomaly detection
分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.49