A Deep CNN Ensemble Framework for Efficient DDoS Attack Detection in Software Defined Networks

被引:145
作者
Haider, Shahzeb [1 ]
Akhunzada, Adnan [1 ,2 ]
Mustafa, Iqra [3 ]
Patel, Tanil Bharat [3 ]
Fernandez, Amanda [4 ]
Choo, Kim-Kwang Raymond [5 ]
Iqbal, Javed [1 ]
机构
[1] COMSATS Univ Islamabad, Dept Comp Sci, Appl Secur Engn Res Grp, Islamabad 45550, Pakistan
[2] Tech Univ Denmark, DTU Compute, DK-2800 Copenhagen, Denmark
[3] Cork Inst Technol, Dept Comp Sci, Cork T12 P928, Ireland
[4] Univ Texas San Antonio, Dept Comp Sci, San Antonio, TX 78249 USA
[5] Univ Texas San Antonio, Dept Informat Syst & Cyber Secur, San Antonio, TX 78249 USA
来源
IEEE ACCESS | 2020年 / 8卷
关键词
Computer crime; Machine learning; Software; Anomaly detection; Feature extraction; Benchmark testing; Computer architecture; Software defined network (SDN); anomaly detection; distributed denial of service (DDoS); deep learning; deep convolutional neural network (CNN); ANOMALY DETECTION; LEARNING APPROACH; SECURE; FLOW; REQUIREMENTS; TAXONOMY; SDN;
D O I
10.1109/ACCESS.2020.2976908
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
As novel technologies continue to reshape the digital era, cyberattacks are also increasingly becoming more commonplace and sophisticated. Distributed denial of service (DDoS) attacks are, perhaps, the most prevalent and exponentially-growing attack, targeting the varied and emerging computational network infrastructures across the globe. This necessitates the design of an efficient and early detection of large-scale sophisticated DDoS attacks. Software defined networks (SDN) point to a promising solution, as a network paradigm which decouples the centralized control intelligence from the forwarding logic. In this work, a deep convolutional neural network (CNN) ensemble framework for efficient DDoS attack detection in SDNs is proposed. The proposed framework is evaluated on a current state-of-the-art Flow-based dataset under established benchmarks. Improved accuracy is demonstrated against existing related detection approaches.
引用
收藏
页码:53972 / 53983
页数:12
相关论文
共 41 条
[1]   Distributed controller clustering in software defined networks [J].
Abdelaziz, Ahmed ;
Fong, Ang Tan ;
Geni, Abdullah ;
Garba, Usman ;
Khan, Suleman ;
Akhunzada, Adnan ;
Talebian, Hamid ;
Choo, Kim-Kwang Raymond .
PLOS ONE, 2017, 12 (04)
[2]   Survey on Network Virtualization Using OpenFlow: Taxonomy, Opportunities, and Open Issues [J].
Abdelaziz, Ahmed ;
Ang, Tan Fong ;
Sookhak, Mehdi ;
Khan, Suleman ;
Vasilakos, Athanasios ;
Liew, Chee Sun ;
Akhunzada, Adnan .
KSII TRANSACTIONS ON INTERNET AND INFORMATION SYSTEMS, 2016, 10 (10) :4902-4932
[3]  
Ahmed ME, 2017, IEEE MILIT COMMUN C, P11, DOI 10.1109/MILCOM.2017.8170802
[4]   Toward Secure Software Defined Vehicular Networks: Taxonomy, Requirements, and Open Issues [J].
Akhunzada, Adnan ;
Khan, Muhammad Khurram .
IEEE COMMUNICATIONS MAGAZINE, 2017, 55 (07) :110-118
[5]   Secure and dependable software defined networks [J].
Akhunzada, Adnan ;
Gani, Abdullah ;
Anuar, Nor Badrul ;
Abdelaziz, Ahmed ;
Khan, Muhammad Khurram ;
Hayat, Amir ;
Khan, Samee U. .
JOURNAL OF NETWORK AND COMPUTER APPLICATIONS, 2016, 61 :199-221
[6]   Securing Software Defined Networks: Taxonomy, Requirements, and Open Issues [J].
Akhunzada, Adnan ;
Ahmed, Ejaz ;
Gani, Abdullah ;
Khan, Muhammad Khurram ;
Imran, Muhammad ;
Guizani, Sghaier .
IEEE COMMUNICATIONS MAGAZINE, 2015, 53 (04) :36-44
[7]  
[Anonymous], WHAT IT IS NETW INTR
[8]  
[Anonymous], 2017, CORR
[9]  
[Anonymous], TECH REP
[10]  
[Anonymous], TECH REP
12345