@article{Ignatev_Navruzov_2022, title={Estimates of the Complexity of Detecting Types of DDOS Attacks}, volume={21}, url={https://computingonline.net/computing/article/view/2779}, DOI={10.47839/ijc.21.4.2779}, abstractNote={<p>The problem of substantiating decisions made in the field of information security through estimates of the complexity of detecting types of DDOS attacks is considered. Estimates are a quantitative measure of a particular type of attack relative to normal network operation traffic data in its own feature space. Own space is represented by a set of informative features. To assess the complexity of detecting types of DDOS attacks, a measure of compactness by latent features on the numerical axis was used. The values of this measure were calculated as the product of intraclass similarity and interclass difference. It is shown that compactness in terms of latent features in its own space is higher than in the entire space. The values of latent features were calculated using the method of generalized estimates. According to this method, objects of normal traffic and a specific type of attack are considered as opposition to each other. An informative feature set is the result of an algorithm that uses the rules of hierarchical agglomerative grouping. At the first step, the feature with the maximum weight value is included in the set. The grouping rules apply the feature invariance property to the scales of their measurements. An analysis of the complexity of detection for 12 types of DDOS attacks is given. The power of sets of informative features ranged from 3 to 16.</p>}, number={4}, journal={International Journal of Computing}, author={Ignatev, Nikolay A. and Navruzov, Erkin R.}, year={2022}, month={Dec.}, pages={443-449} }