A distributed denial of service (DDoS) attack is a significant threat to web‐based applications and hindering legitimate traffic (denies access to benign users) by overwhelming the victim system or its infrastructure (service, bandwidth, networking devices, etc.) with a large volume of attack traffic. It leads to a delay in responses or sometimes a crash victim system. Even a few moments of pause in web‐based applications lead to a huge monetary loss and a bad reputation in the market. Several approaches available in the literature to protect websites from different types of DDoS attacks. However, incidents and volume sizes of DDoS attacks are growing quarter by quarter. Further, various challenges in the traditional framework based defense mechanisms: itself becoming a victim of attacks while analyzing a massive amount of traffic, require more time for detection process, no coordination among the modules, etc. This paper presents a comprehensive DDoS defense deployment taxonomy and critically reviewed existing distributed frameworks based DDoS attack detection systems. Further, characterized several existing distributed processing frameworks to select an appropriate one for deploying DDoS attack detection mechanisms. Finally, several evaluation metrics, open issues, discussion on available datasets including their limitations, and future directions are presented.

中文翻译：

---

用于检测分布式拒绝服务攻击的分布式框架：全面回顾，挑战和未来方向

分布式拒绝服务（DDoS）攻击是对基于Web的应用程序的重大威胁，并通过使受害系统或其基础结构（服务，带宽，网络设备等）不堪重负，从而阻碍了合法流量（拒绝对良性用户的访问）。大量的攻击流量。这会导致响应延迟，有时甚至会导致受害者系统崩溃。基于Web的应用程序中即使有片刻的停顿，也会造成巨大的金钱损失，并在市场上失去良好的声誉。文献中提供了几种保护网站免受不同类型的DDoS攻击的方法。但是，DDoS攻击的事件和数量规模逐季度增长。此外，传统的基于框架的防御机制面临各种挑战：在分析大量流量的同时，自身已成为攻击的受害者，需要更多的时间进行检测过程，各模块之间不协调，等等。本文提出了一种全面的DDoS防御部署分类法，并对基于DDoS攻击检测系统的现有分布式框架进行了严格审查。此外，表征了几种现有的分布式处理框架，以选择合适的框架来部署DDoS攻击检测机制。最后，介绍了一些评估指标，未解决的问题，对可用数据集的讨论（包括其局限性）以及未来的发展方向。描述了几个现有的分布式处理框架，以选择合适的框架来部署DDoS攻击检测机制。最后，介绍了一些评估指标，未解决的问题，对可用数据集的讨论（包括其局限性）以及未来的发展方向。描述了几个现有的分布式处理框架，以选择合适的框架来部署DDoS攻击检测机制。最后，介绍了一些评估指标，未解决的问题，对可用数据集的讨论（包括其局限性）以及未来的发展方向。