Detection and Explanation of Distributed Denial of Service (DDoS) Attack Through Interpretable Machine Learning

Distributed denial of service (DDoS) is a network-based attack where the aim of the attacker is to overwhelm the victim server. The attacker floods the server by sending enormous amount of network packets in a distributed manner beyond the servers capacity and thus causing the disruption of its normal service. In this dissertation, we focus to build intelligent detectors that can learn by themselves with less human interactions and detect DDoS attacks accurately. Machine learning (ML) has promising outcomes throughout the technologies including cybersecurity and provides us with intelligence when applied on Intrusion Detection Systems (IDSs). In addition, from the state-of-the-art ML-based IDSs, the Ensemble classifier (combination of classifiers) outperforms single classifier. Therefore, we have implemented both supervised and unsupervised ensemble frameworks to build IDSs for better DDoS detection accuracy with lower false alarms compared to the existing ones. Our experimentation, done with the most popular and benchmark datasets such as NSL-KDD, UNSW-NB15, and CICIDS2017, have achieved at most detection accuracy of 99.1% with the lowest false positive rate of 0.01%. As feature selection is one of the mandatory preprocessing phases in ML classification, we have designed several feature selection techniques for better performances in terms of DDoS detection accuracy, false positive alarms, and training times. Initially, we have implemented an ensemble framework for feature selection (FS) methods which combines almost all well-known FS methods and yields better outcomes compared to any single FS method.The goal of my dissertation is not only to detect DDoS attacks precisely but also to demonstrate explanations for these detections. Interpretable machine learning (IML) technique is used to explain a detected DDoS attack with the help of the effectiveness of the corresponding features. We also have implemented a novel feature selection approach based on IML which helps to find optimum features that are used further to retrain our models. The retrained model gives better performances than general feature selection process. Moreover, we have developed an explainer model using IML that identifies detected DDoS attacks with proper explanations based on effectiveness of the features. The contribution of this dissertation is five-folded with the ultimate goal of detecting the most frequent DDoS attacks in cyber security. In order to detect DDoS attacks, we first used ensemble machine learning classification with both supervised and unsupervised classifiers. For better performance, we then implemented and applied two feature selection approaches, such as ensemble feature selection framework and IML based feature selection approach, both individually and in a combination with supervised ensemble framework. Furthermore, we exclusively added explanations for the detected DDoS attacks with the help of explainer models that are built using LIME and SHAP IML methods. To build trustworthy explainer models, a detailed survey has been conducted on interpretable machine learning methods and on their associated tools. We applied the designed framework in various domains, like smart grid and NLP-based IDS to verify its efficacy and ability of performing as a generic model

The Guru in South Asia

This book provides a set of fresh and compelling interdisciplinary approaches to the enduring phenomenon of the guru in South Asia. Moving across different gurus and kinds of gurus, and between past and present, the chapters call attention to the extraordinary scope and richness of the social lives and roles of South Asian gurus. Prevailing scholarship has rightly considered the guru to be a source of religious and philosophical knowledge and mystical bodily practices. This book goes further and considers the social engagements and entanglements of these spiritual leaders, not just on their own (narrowly denominational) terms, but in terms of their diverse, complex, rapidly evolving engagements with ‘society’ broadly conceived. The book explores and illuminates the significance of female gurus, gurus from the perspective of Islam, imbrications of guru-ship and slavery in pre-modern India, connections between gurus and power, governance and economic liberalization in modern and contemporary India, vexed questions of sexuality and guru-ship, gurus’ charitable endeavours, the cosmopolitanism of gurus in contexts of spiritual tourism, and the mediation of gurus via technologies of electronic communication. Bringing together internationally renowned scholars from religious studies, political science, history, sociology and anthropology, The Guru in South Asia provides exciting and original new insights into South Asian guru-ship

The Guru in South Asia

This book provides a set of fresh and compelling interdisciplinary approaches to the enduring phenomenon of the guru in South Asia. Moving across different gurus and kinds of gurus, and between past and present, the chapters call attention to the extraordinary scope and richness of the social lives and roles of South Asian gurus. Prevailing scholarship has rightly considered the guru to be a source of religious and philosophical knowledge and mystical bodily practices. This book goes further and considers the social engagements and entanglements of these spiritual leaders, not just on their own (narrowly denominational) terms, but in terms of their diverse, complex, rapidly evolving engagements with ‘society’ broadly conceived. The book explores and illuminates the significance of female gurus, gurus from the perspective of Islam, imbrications of guru-ship and slavery in pre-modern India, connections between gurus and power, governance and economic liberalization in modern and contemporary India, vexed questions of sexuality and guru-ship, gurus’ charitable endeavours, the cosmopolitanism of gurus in contexts of spiritual tourism, and the mediation of gurus via technologies of electronic communication. Bringing together internationally renowned scholars from religious studies, political science, history, sociology and anthropology, The Guru in South Asia provides exciting and original new insights into South Asian guru-ship

Botaiho : Japanese organised crime under the Boryokudan countermeasures law

This thesis is an investigation into the effects of the 1992 böryokudan countermeasures law (böryokudan taisaku ha or, more simply, bötaihö) on Japan's organised crime syndicates (böryokudan or yakuza). Underlying this examination is a functionalist perspective of organised crime which rests on the premise that, far from being unambiguously socially dysfunctional, organised crime groups exist because they satisfy needs held by various sections of society (both in the upper and underworlds). This approach demystifies many of the supposedly unique aspects of the böryokudan/yakuza (such as yakuza-authority symbiosis) and places Japan within the compass of modem organised-crime studies. An empirical overview of the böryokudan's development from 1945 to 1992 shows that the prime dynamic behind this evolution has been the legal and law-enforcement environment within which these groups exist and that frequently the impact of these changes has been socially undesirable. Attempts to examine whether or not the bötaihö has similarly exacerbated organised criminality in Japan are hampered by the collapse of Japan's bubble economy in 1990. This event had profound consequences for boryokudan groups rendering many activities unviable, whilst simultaneously creating new opportunities. Despite these extraneous considerations, the bötaihö has had an observable impact on many aspects of the böryokudan's activities and some of these consequences have been socially undesirable. The legal analysis of the bötaihö is placed in the wider context of international organised-crime control measures, in particular America's RICO statutes and European laws, both of which were highly influential in the debate within Japan concerning the framing of new anti-böryokudan laws. The thesis concludes by arguing that the radically different structure of the bötaihö, vis-ä-vis these alternative models, is part of a wider reversion to pre-war legal and policing norms in which, in addition to enforcement of the criminal law, the police also exercise considerable administrative powers