International Journal of Wireless and Microwave Technologies (IJWMT)
IJWMT Vol. 16, No. 2, 8 Apr. 2026
Cover page and Table of Contents: PDF (size: 796KB)
Development of a Machine Learning-Based Framework for Real-Time Detection and Mitigation of Distributed Denial of Service Attacks
PDF (796KB), PP.204-213
Views: 0 Downloads: 0
Author(s)
Index Terms
DDoS Detection, Machine Learning, Real-time Detection, Adaptive Learning, Network Security
Abstract
Distributed Denial-of-Service (DDoS) attacks continue to pose a significant threat to digital infrastructures, often resulting in degraded service availability and financial losses. Traditional detection systems, which depend on static rule sets, struggle to adapt to evolving traffic patterns, leading to increased false positives and undetected attacks. This paper presents a real-time, machine learning-based framework for DDoS detection and mitigation. The framework incorporates supervised learning algorithms, including Random Forest, XGBoost, and Multi-Layer Perceptron (MLP), trained on the CIC-DDoS2019 dataset using carefully selected network traffic features to enhance detection accuracy. The system architecture integrates Scapy for traffic capture, Apache Kafka for message queuing, and Flask with Plotly for dynamic monitoring. Evaluation results demonstrate superior performance compared to legacy methods across precision, recall, F1-score, false positive rate (FPR), and false negative rate (FNR). Additionally, adaptive models such as Passive-Aggressive and Stochastic Gradient Descent (SGD) enhance robustness against evolving attack vectors. The proposed solution delivers an effective and scalable real-time defense mechanism suitable for banking, cloud, and enterprise systems. However, the system’s performance remains influenced by the characteristics of the training dataset and may introduce computational overhead during high-throughput traffic analysis. Future work will explore improved computational efficiency and responsiveness to rare or emerging DDoS patterns.
Cite This Paper
Oluyimide A. Onaolapo, Adebola K. Ojo, "Development of a Machine Learning-Based Framework for Real-Time Detection and Mitigation of Distributed Denial of Service Attacks", International Journal of Wireless and Microwave Technologies(IJWMT), Vol.16, No.2, pp. 204-213, 2026. DOI:10.5815/ijwmt.2026.02.14
Reference
[1]Jaafar, G. A., Abdullah, S. M., & Ismail, S., “Review of recent detection methods for HTTP DDoS attack,” Journal of Computer Networks and Communications, 2019.
[2]Sunil Bhatia, Sukhpal Behal, and Ishfaq Ahmed, “Distributed Denial of Service Attacks and Defense Mechanisms: Current Landscape and Future Directions,” Versatile Cybersecurity, 2018.
[3]Issa Sharafaldin, Arash Habibi Lashkari, Sattar Hakak, and Ali A. Ghorbani, “Developing Realistic Distributed Denial of Service (DDoS) Attack Dataset and Taxonomy,” in 2019 IEEE International Carnahan Conference on Security Technology (ICCST), 2019.
[4]Dong Yin, Lin Zhang, Kun Yang, “A DDoS Attack Detection and Mitigation with Software-Defined Internet of Things Framework,” IEEE Access, vol. 6, p. 24694–24705, 2018.
[5]N. C. Woods, V. E. Agada, A. K. Ojo, “Predicting Phishing Websites Using Support Vector Machine and Multi-Class Classification Based on Association Rule Techniques,” University of Ibadan Journal of Science and Logics in ICT Research (UIJSLICTR), vol. 2, no. 1, p. 28–39, 2018.
[6]A. A. Darem, A. A. Alhashmi, T. M. Alkhaldi, A. M. Alashjaee, S. M. Alanazi, and S. A. Ebad, “Cyber Threats Classifications and Countermeasures in Banking and Financial Sector,” IEEE Access, vol. 11, p. 125138–125158, 2023.
[7]A. Haider, M. Adnan Khan, A. Rehman, M. Rahman, and H. Seok Kim, “A Real-Time Sequential Deep Extreme Learning Machine Cybersecurity Intrusion Detection System,” Computers, Materials & Continua, vol. 66, no. 2, p. 1785–1798, 2021.
[8]Derya Akgun, Serkan Hizal, Umit Cavusoglu, “A New DDoS Attacks Intrusion Detection Model Based on Deep Learning for Cybersecurity,” Computers & Security, vol. 118, no. 102748, 2022.
[9]P. Martinez, “Adaptive Protection: Leveraging Machine Learning in Cybersecurity Strategies,” Journal of Innovative Technologies, vol. 6, no. 1, 2023.
[10]N. Baker, “Advanced Machine Learning Models for Adaptive Cybersecurity Systems,” ResearchGate, 2024.
[11]Javad H. Joloudari, Amir Marefat, Mohammad A. Nematollahi, Segun S. Oyelere, Salman Hussain, “Effective Class-Imbalance Learning Based on SMOTE and Convolutional Neural Networks,” Applied Sciences, vol. 13, no. 6, p. 4006, 2023.
[12]Ö. Aslan, “A Methodology to Detect Distributed Denial of Service Attacks,” Bilişim Teknolojileri Dergisi (Journal of Information Technologies), vol. 15, no. 2, p. 149–158, 2022.
[13]Ahmed M. Mahfouz, Dinesh Venugopal, S. G. Shiva, “Comparative Analysis of ML Classifiers for Network Intrusion Detection,” in Fourth International Congress on Information and Communication Technology (ICICT 2019), London, 2020.
[14]Sukhbir Singh Dhaliwal, Anisul Arefin Nahid, Rizwan Abbas, “Effective Intrusion Detection System Using XGBoost,” Information, vol. 9, no. 7, p. 149, 2018.
[15]K. Gulhane, S. Saxena, A. Deogaonkar, V. Kumar, C. Vichoray, S. Goyal, “Overview of Machine Learning Techniques in Cybersecurity Data Science Using Gradient Boosting and Random Forest Algorithm,” in 2024 Second International Conference on Intelligent Cyber Physical Systems and Internet of Things (ICoICI), 2024.
[16]S. H. Brahmanand, N. D. Lal, D. S. Sahana, G. S. Nijguna, P. Nayak, “A Systematic Approach of Analysing Network Traffic Using Packet Sniffing with Scapy Framework,” in Fourth International Conference on Computer Networks and Inventive Communication Technologies (ICCNCT 2021), 2022.
[17]M. A. Homsi, “Emerging Trends in AI-Driven Cybersecurity: A Comprehensive Review,” 2024.
[18]M. A. Hossain, M. S. Islam, “Enhancing DDoS Attack Detection with Hybrid Feature Selection and Ensemble-Based Classifier: A Promising Solution for Robust Cybersecurity,” Measurement: Sensors, vol. 32, p. 101037, 2024.
[19]Mohammad Najafimehr, Seyed Zarifzadeh, Saeed Mostafavi, “DDoS Attacks and Machine-Learning-Based Detection Methods: A Survey and Taxonomy,” Engineering Reports, vol. 5, no. 12, p. e12697, 2023.
[20]Ahmad A. Alashhab, Muhammad S. M. Zahid, Musa Abdullahi, Md. Shafiqul Rahman, “Real-Time Detection of Low-Rate DDoS Attacks in SDN-Based Networks Using Online Machine Learning Model,” in 2023 7th Cyber Security in Networking Conference (CSNet), 2023.
[21]Dinesh Kapil, Vinod Mittal, Dhruv Gangodkar, “Evaluating Machine Learning Approaches for DDoS Attack Detection Using CIC-DDoS2019,” 2023.
[22]S. Yevseiev, O. Milov, N. Dzheniuk, M. Tolkachov, T. Voitko, M. Prygara, O. Lezik, “Development of a Multiloop Security System of Information Interactions in Socio-Cyberphysical Systems,” 2023.