Bio-Inspired Feature Selection and Deep Learning for DDoS Detection: A Systematic Review
Authors
Faculty of Computing and Information Technology, Tunku Abdul Rahman University of Management and Technology, Kuantan (Malaysia)
Faculty of Computing, Universiti Malaysia Pahang Al-Sultan Abdullah, Pekan (Malaysia)
Article Information
DOI: 10.47772/IJRISS.2026.100500633
Subject Category: Cybersecurity
Volume/Issue: 10/5 | Page No: 9428-9439
Publication Timeline
Submitted: 2026-05-09
Accepted: 2026-05-14
Published: 2026-06-09
Abstract
Distributed Denial of Service (DDoS) attacks represent one of the most persistent and damaging cyber threats facing cloud computing environments, with global attack volumes increasing from 7.9 million incidents in 2018 to over 15 million in 2023. The high dimensionality of modern network traffic datasets which often containing hundreds of statistical features, poses a significant challenge for building efficient and accurate intrusion detection systems (IDS). This paper presents a systematic review of bio-inspired metaheuristic algorithms for feature selection in DDoS detection, coupled with deep learning classification architectures. A structured literature search was conducted across IEEE Xplore, Scopus, Web of Science, and Google Scholar using defined inclusion and exclusion criteria, yielding a final corpus of studies published between 2015 and 2025. Unlike existing reviews that treat feature selection and deep learning classification in isolation, this review uniquely integrates both dimensions within a unified analytical framework, with particular emphasis on cloud-specific DDoS scenarios, multi-stage hybrid feature selection pipelines, and cascaded deep learning architectures operating on learned latent representations. The review examines the landscape of DDoS attack taxonomies, evaluates eight widely used benchmark datasets, and provides a comparative analysis of seven bio-inspired feature selection algorithms including Genetic Algorithm (GA), Particle Swarm Optimization (PSO), Grey Wolf Optimizer (GWO), Ant Colony Optimization (ACO), Whale Optimization Algorithm (WOA), Firefly Algorithm (FA), and Salp Swarm Algorithm (SSA). Deep learning architectures surveyed include Deep Neural Networks (DNN), Convolutional Neural Networks (CNN), Long Short-Term Memory (LSTM), Bidirectional LSTM (BiLSTM), and hybrid cascaded models. A critical analysis of reported performance metrics is provided, addressing methodological concerns including dataset imbalance, overfitting risks, and limited cross-dataset generalisation. Seven key research gaps are identified, and future research directions encompassing multi-stage hybrid feature selection pipelines, multi-class detection taxonomies, and explainable AI integration are proposed.
Keywords
DDoS Detection, Intrusion Detection System, Bio-Inspired Feature Selection, Deep Learning, Cloud Security
Downloads
References
1. Almomani, O. (2020). A Feature Selection Model for Network Intrusion Detection System Based on PSO, GWO, FFA and GA Algorithms. Symmetry 2020, Vol. 12, Page 1046, 12(6), 1046. https://doi.org/10.3390/SYM12061046 [Google Scholar] [Crossref]
2. AlSaleh, I., Al-Samawi, A., & Nissirat, L. (2024). Novel Machine Learning Approach for DDoS Cloud Detection: Bayesian-Based CNN and Data Fusion Enhancements. Sensors, 24(5), 1418. https://doi.org/10.3390/s24051418 [Google Scholar] [Crossref]
3. Alzughaibi, S., & El Khediri, S. (2023). A Cloud Intrusion Detection Systems Based on DNN Using Backpropagation and PSO on the CSE-CIC-IDS2018 Dataset. Applied Sciences, 13(4), 2276. https://doi.org/10.3390/app13042276 [Google Scholar] [Crossref]
4. Bakro, M., Kumar, R. R., Husain, M., Ashraf, Z., Ali, A., Yaqoob, S. I., Ahmed, M. N., & Parveen, N. (2024). Building a Cloud-IDS by Hybrid Bio-Inspired Feature Selection Algorithms Along With Random Forest Model. IEEE Access, 12, 8846–8874. https://doi.org/10.1109/ACCESS.2024.3353055 [Google Scholar] [Crossref]
5. Cisa, Fbi, & Ms-isa. (2022). Understanding and Responding to Distributed Denial of Service Attacks. [Google Scholar] [Crossref]
6. Cisco. (2020). Cisco Annual Internet Report - Cisco Annual Internet Report (2018–2023) White Paper - Cisco. https://www.cisco.com/c/en/us/solutions/collateral/executive-perspectives/annual-internet-report/white-paper-c11-741490.html [Google Scholar] [Crossref]
7. Ferrag, M. A., Shu, L., Djallel, H., & Choo, K.-K. R. (2021). Deep Learning-Based Intrusion Detection for Distributed Denial of Service Attack in Agriculture 4.0. Electronics, 10(11), 1257. https://doi.org/10.3390/electronics10111257 [Google Scholar] [Crossref]
8. Hnamte, V., Najar, A. A., Nhung-Nguyen, H., Hussain, J., & Sugali, M. N. (2024). DDoS attack detection and mitigation using deep neural network in SDN environment. Computers and Security, 138. https://doi.org/10.1016/J.COSE.2023.103661 [Google Scholar] [Crossref]
9. Holland, J. H., & Book, A. B. (1975). ADAPTATION IN NATURAL AND ARTIFICIAL SYSTEMS. [Google Scholar] [Crossref]
10. Kennedy, J., & Eberhart, R. (1995). Particle swarm optimization. Proceedings of ICNN’95 - International Conference on Neural Networks, 4, 1942–1948. https://doi.org/10.1109/ICNN.1995.488968 [Google Scholar] [Crossref]
11. Khraisat, A., Gondal, I., Vamplew, P., & Kamruzzaman, J. (2019). Survey of intrusion detection systems: techniques, datasets and challenges. Cybersecurity, 2(1). https://doi.org/10.1186/s42400-019-0038-7 [Google Scholar] [Crossref]
12. Mirjalili, S., Mirjalili, S. M., & Lewis, A. (2014). Grey Wolf Optimizer. Advances in Engineering Software, 69, 46–61. https://doi.org/10.1016/j.advengsoft.2013.12.007 [Google Scholar] [Crossref]
13. Saidin, S. (2018). Review of Firewall Optimization Techniques. Proceedings Book: National Conference for Postgraduate Research (NCON-PGR 2018), 28-29 August 2018 , Universiti Malaysia Pahang, Gambang, Pahang, 15–21. http://ncon-pgr.ump.edu.my/index.php/en/download/proceedings-book [Google Scholar] [Crossref]
14. Saidin, S. B., & Hisham, S. B. I. (2023). A Survey on Supervised Machine Learning in Intrusion Detection Systems for Internet of Things. 8th International Conference on Software Engineering and Computer Systems, ICSECS 2023, 419–423. https://doi.org/10.1109/ICSECS58457.2023.10256275 [Google Scholar] [Crossref]
15. Saidin, S., Hisham, S. I., Jamil, A. M., & Abdullah, N. A. (2025). Comparative Analysis of Cybersecurity Awareness Frameworks: Effectiveness and Scope. 2025 IEEE International Conference on Industrial Technology & Computer Engineering (ICITCE), 28–32. https://doi.org/10.1109/ICITCE65255.2025.11210771 [Google Scholar] [Crossref]
16. Sezgin, A., Ulaş, M., & Boyacı, A. (2025). Multi-Objective Feature Selection for Intrusion Detection Systems: A Comparative Analysis of Bio-Inspired Optimization Algorithms. Sensors 2025, Vol. 25, Page 6099, 25(19), 6099. https://doi.org/10.3390/S25196099 [Google Scholar] [Crossref]
17. Sharma, V. (2025). Improving Intrusion Detection with Hybrid Deep Learning Models: A Study on CIC-IDS2017, UNSW-NB15, and KDD CUP 99. Journal of Information Systems Engineering and Management, 10(11s), 633–650. https://doi.org/10.52783/jisem.v10i11s.1665 [Google Scholar] [Crossref]
18. Swain, P. K. (2025). Cloud-based DDoS detection using hybrid feature selection with deep reinforcement learning (DRL). Scientific Reports, 15(1), 36546. https://doi.org/10.1038/s41598-025-18857-3 [Google Scholar] [Crossref]
19. Thakkar, A., & Lohiya, R. (2021). A survey on intrusion detection system: feature selection, model, performance measures, application perspective, challenges, and future research directions. In Artificial Intelligence Review (Number 0123456789). Springer Netherlands. https://doi.org/10.1007/s10462-021-10037-9 [Google Scholar] [Crossref]
20. Yu, L., & Liu, H. (2004). Efficient Feature Selection via Analysis of Relevance and Redundancy. Journal of Machine Learning Research, 5, 1205–1224. [Google Scholar] [Crossref]
Metrics
Views & Downloads
Similar Articles
- “Next-Generation Cybersecurity Through Blockchain and AI Synergy: A Paradigm Shift in Intelligent Threat Mitigation and Decentralised Security”
- Forensic Payroll Analytics for IPPIS: A Hybrid Anomaly-Detection Framework to Expose Payroll Fraud, Improve Data Governance, and Protect Employee Rights
- Factors Influencing Data Protection on Global Trade
- Development Of Artificial Intelligence-Based Model for Forensic Analysis of Cross-Platform Deepfakes
- Cyber Threats and Nigeria’s National Security: Assessing the Role of Regional Cooperation in West Africa