A defense system for defeating DDoS attacks in SDN based networks

Adel Alshamrani, Ankur Chowdhary, Sandeep Pisharody, Duo Lu, Dijiang Huang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

63 Scopus citations

Abstract

Software-Defined Networking (SDN) is a network architecture that aims at providing high flexibility through the decoupling of the network logic from the forwarding functions. The ease of programmability makes SDN a great platform implementation of various initiatives that involve application deployment, security solutions, and decentralized network management in a multi-tenant data center environment. Although this can introduce many applications in different areas and leads to the high impact on several aspects, security of SDN architecture remains an open question and needs to be revisited based on the new concept of SDN. Current SDN-based attack detection mechanisms have some limitations. In this paper, we investigate two of those limitations: Misbehavior Attack and NewFlow Attack. We propose a secure system that periodically collects network statistics from the forwarding elements and apply Machine Learning (ML) classification algorithms. Our framework ensures that the proposed solution makes the SDN architecture more self-adaptive, and intelligent while reacting to network changes.

Original languageEnglish (US)
Title of host publicationMobiWac 2017 - Proceedings of the 15th ACM International Symposium on Mobility Management and Wireless Access, Co-located with MSWiM 2017
PublisherAssociation for Computing Machinery, Inc
Pages83-92
Number of pages10
ISBN (Electronic)9781450351638
DOIs
StatePublished - Nov 21 2017
Event15th ACM International Symposium on Mobility Management and Wireless Access, MobiWac 2017 - Miami, United States
Duration: Nov 21 2017Nov 25 2017

Publication series

NameMobiWac 2017 - Proceedings of the 15th ACM International Symposium on Mobility Management and Wireless Access, Co-located with MSWiM 2017

Conference

Conference15th ACM International Symposium on Mobility Management and Wireless Access, MobiWac 2017
Country/TerritoryUnited States
CityMiami
Period11/21/1711/25/17

Keywords

  • Ddos mitigation
  • Machine Learning
  • Misbehavior Attack
  • Software-Defined Networking

ASJC Scopus subject areas

  • Hardware and Architecture
  • Electrical and Electronic Engineering
  • Information Systems
  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'A defense system for defeating DDoS attacks in SDN based networks'. Together they form a unique fingerprint.

Cite this