Detection and Mitigation of DDoS Attacks Using Conditional Entropy in Software-defined Networking

被引：11

作者：

Xuanyuan, Ming ^{[1
]}

Ramsurrun, Visham ^{[1
]}

Seeam, Amar ^{[1
]}

机构：

[1] Middlesex Univ, Sch Sci & Technol, Flic En Flac, Mauritius

来源：

2019 11TH INTERNATIONAL CONFERENCE ON ADVANCED COMPUTING (ICOAC 2019) | 2019年

关键词：

DDoS; DDoS detection; Mitigation; SDN; Entropy;

D O I：

10.1109/ICoAC48765.2019.246818

中图分类号：

TP39 [计算机的应用];

学科分类号：

081203 ; 0835 ;

摘要：

Software-defined networking (SDN) is a relatively new technology that promotes network revolution. The most distinct characteristic of SDN is the transformation of control logic from the basic packet forwarding equipment to a centralized management unit called controller. However, the centralized control of the network resources is like a double-edged sword, for it not only brings beneficial features but also introduces single point of failure if the controller is under distributed denial of service (DDoS) attacks. In this paper, we introduce a light-weight approach based on conditional entropy to improve the SDN security with an aim of defending DDoS at the early stage. The experimental results show that the proposed method has a high average detection rate of 99.372%.

引用

页码：66 / 71

页数：6

共 50 条

[31] TPDD: A Two-Phase DDoS Detection System in Software-Defined Networking
Shen, Yi
Wu, Chunming
Kong, Dezhang
Yang, Mingliang
ICC 2020 - 2020 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS (ICC), 2020,
[32] Using Software-Defined Networking for Ransomware Mitigation: The Case of CryptoWall
Cabaj, Krzysztof
Mazurczyk, Wojciech
IEEE NETWORK, 2016, 30 (06): : 14 - 20
[33] Detection and Analysis of TCP-SYN DDoS Attack in Software-Defined Networking
Swami, Rochak
Dave, Mayank
Ranga, Virender
WIRELESS PERSONAL COMMUNICATIONS, 2021, 118 (04) : 2295 - 2317
[34] Detection and Analysis of TCP-SYN DDoS Attack in Software-Defined Networking
Rochak Swami
Mayank Dave
Virender Ranga
Wireless Personal Communications, 2021, 118 : 2295 - 2317
[35] Early Detection of Abnormal Attacks in Software-Defined Networking Using Machine Learning Approaches
Chuang, Hsiu-Min
Liu, Fanpyn
Tsai, Chung-Hsien
SYMMETRY-BASEL, 2022, 14 (06):
[36] Using Machine Learning and Software-Defined Networking to Detect and Mitigate DDoS Attacks in Fiber-Optic Networks
Alwabisi, Sulaiman
Ouni, Ridha
Saleem, Kashif
ELECTRONICS, 2022, 11 (23)
[37] Mitigating DNS Query-Based DDoS Attacks with Machine Learning on Software-Defined Networking
Ahmed, Muhammad Ejaz
Kim, Hyoungshick
Park, Moosung
MILCOM 2017 - 2017 IEEE MILITARY COMMUNICATIONS CONFERENCE (MILCOM), 2017, : 11 - 16
[38] Future of DDoS Attacks Mitigation in Software Defined Networks
Vizvary, Martin
Vykopal, Jan
MONITORING AND SECURING VIRTUALIZED NETWORKS AND SERVICES, 2014, 8508 : 123 - 127
[39] A comprehensive survey on DDoS detection, mitigation, and defense strategies in software-defined networks
Jain, Ankit Kumar
Shukla, Hariom
Goel, Diksha
CLUSTER COMPUTING-THE JOURNAL OF NETWORKS SOFTWARE TOOLS AND APPLICATIONS, 2024, 27 (09): : 13129 - 13164
[40] Software-defined DDoS detection with information entropy analysis and optimized deep learning
Liu, Ying
Zhi, Ting
Shen, Ming
Wang, Lu
Li, Yikun
Wan, Ming
FUTURE GENERATION COMPUTER SYSTEMS-THE INTERNATIONAL JOURNAL OF ESCIENCE, 2022, 129 (99-114): : 99 - 114

← 1 2 3 4 5 →