DEEP REINFORCEMENT LEARNING FOR BUILDING HONEYPOTS AGAINST RUNTIME DOS ATTACK

Authors

  • V.Selvakumar, Dr.K.Rubasoundar, Balamurali Ramakrishnan

Abstract

Honeypot is a network environment used to protect the legitimate network resources from attacks. Honeypot creates an environment that impress attackers to inject their activities to steal resources. This is a way to detect the attacks by doing attack detection procedures. In this work, Denial of Service (DoS) attacks are effectively detected by proposed honeypot system. Machine Learning (ML) and Deep Learning (DL) methods evolve in many areas to build intelligent decision making systems. This work uses DL approaches and secure event validation procedures for finding predicting DoS attacks. The proposed system called Deep Adaptive Reinforcement Learning for Honeypots (DARLH) is implemented to monitor internal and external DoS attacks. In the honeypot environment, the proposed DARLH system implements DARL based IDS (Intrusion Detection System) agents and Deep Recurrent Neural Network (DRNN) based IDS agents for monitoring multiple runtime DoS attacks. These techniques support for dynamic IDS against DoS attack. In addition, the DARLH creates protected poison distribution and server side supervision system for keeping the monitoring events legitimate. This work is implemented and performance is evaluated. The results are compared with existing systems like GNBH, BCH and RNSG. In this comparison, the proposed system provides 5% to 10% better results than other systems

Published

2020-02-29

Issue

Section

Articles