Abstract
In the traditional network system, control plane (CP) and data plane (DP) are both located on the same network device. If that device fails, the whole system will stop working and the traffics cannot be managed by the administrator. In distributed denial of service (DDoS) or denial of service (DoS), the attackers usually use botnets to generate a large or medium size traffic flow toward the server where the service is active. Nowadays, many techniques have been proposed to detect DoS, DDoS attacks but they are not very effective. However, the separation of CP and DP in software-defined networking (SDN) provides a good foundation for attack detection and prevention no matter whether the attackers attack some parts of the SDN or all of them. In this research, we use entropy to calculate the randomness level of the size of the packet to CP, the system’s brain. With this method, the controller can handle faster and we can get more correct output compared with the machine learning method in the SDN.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Polat H, Polat O, Cetin A (2020) Detecting DDoS attacks in software-defined networks through feature selection methods and machine learning models. Sustain 12(3)
Andres P et al (2015) FlowFence: a denial of service defense system for software defined networking. In: Proceedings global information infrastructure networking symposium, pp 1–6
Seungwon S et al (2013) Avant-guard: scalable and vigilant switch flow management in software-defined networks. In: Proceedings 2013 ACM SIGSAC conference computer and communications security, ACM, pp 413–424
Chen K et al (2016) SDNShield: towards more comprehensive defense against DDoS attacks on SDN control plane. In: 2016 IEEE conference on communications and network security (CNS), IEEE, pp 28–36
Moustafa N (2016) The evaluation of network anomaly detection systems: statistical analysis of the unsw-nb15 data set and the comparison with the kdd99 data set. vol 25, No 1–3, Australia, pp 18–31
Lopez AD, Mohan AP, Nair S (2019) Network traffic behavioral analytics for detection of DDoS attacks. SMU Data Sci Rev 2(1) 2019
Khare M, Oak R (2020) Real-Time distributed denial-of-service (DDoS) attack detection using decision trees for server performance maintenance. In: Performance management of integrated systems and its applications in software engineering, Springer, Singapore, pp 1–9
Sharma A, Agrawal C, Singh A, Kumar K (2020) Real-Time DDoS detection based on entropy using Hadoop framework. In: Computing in engineering and technology, Springer, Singapore, pp 297–305
Nooribakhsh M, Mollamotalebi M (2020) A review on statistical approaches for anomaly detection in DDoS attacks. Inf Secur J: A Global Perspect, 1–16
Riad AM, Elhenawy I, Hassan A, Nanc (2013) Visualize network anomaly detection. 5(5)
Idhammad M, Afdel K, Belouch M (2017) DoS detection method based on artificial neural. 8(4)
Akhunzada E, Ahmed A, Gani M, Khan K, Imran M (2015) Securing software defined network: toxonomy, requirements, and open issues, Malaysia, pp 39
Gu G, Shin S (2012) CloudWatcher: network security monitoring using openflow. pp 1–6
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Truong, DT., Tran, KD., Nguyen, QB., Tran, DT. (2021). Detection of DoS, DDoS Attacks in Software-Defined Networking. In: Kumar, R., Quang, N.H., Kumar Solanki, V., Cardona, M., Pattnaik, P.K. (eds) Research in Intelligent and Computing in Engineering. Advances in Intelligent Systems and Computing, vol 1254. Springer, Singapore. https://doi.org/10.1007/978-981-15-7527-3_3
Download citation
DOI: https://doi.org/10.1007/978-981-15-7527-3_3
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-7526-6
Online ISBN: 978-981-15-7527-3
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)