Abstract
The relevance of flooding attacks is increasing day by day. The incongruity between network capabilities and market requirements lead to the development of novel network architecture named software-defined networking (SDN). SDN architecture drastically shifted the pace of networking environment from hardware to software, which provides a manageable, cost-effective, dynamic, and adaptable nature for today’s applications. The role of SDN in security application by collecting network information and designing framework for detecting attacks is incredible. A case study is conducted in the SDN environment for the real-time scenario to analyze the network statistics of both normal and attack scenarios. The network traffics are analyzed and its graphical interpretation is explained for parameters like round trip time, window size, throughput, and window scaling. This helps to understand the significance of network parameters and its responsiveness corresponding to both scenarios to detect DDoS attacks. This preliminary study concluded with the design of a high-level conceptual model for DDoS detection in the SDN environment.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
N.Z. Bawany, J.A. Shamsi, K. Salah, DDoS attack detection and mitigation using SDN: methods, practices, and solutions. Arabian J. Sci. Eng. 42(2), 425–441 (2017)
X.J. Geng, A.B. Whinston, Defeating distributed denial of service attacks. IT Prof. 2(4), 36–42 (2000)
T. Mahjabin, Y. Xiao, G. Sun, W. Jiang, A survey of distributed denial-of-service attack, prevention, and mitigation techniques. Int. J. Distrib. Sensor Netw. 13(12), 1550147717741463 (2017)
C. Cimpanu, Aws said it mitigated a 2.3 tbps ddos attack, the largest ever, https://www.zdnet.com/article/aws-said-it-mitigated-a-2-3-tbps-ddos-attack-the-largest-ever/ (2020)
H. Kim, T. Benson, A. Akella, N. Feamster, The evolution of network configuration: a tale of two campuses, in Proceedings of ACM SIGCOMM Conference on Internet Measurement Conference (IMC) (ACM), pp. 499–514 (2011)
K. Benzekki, A.E. Fergougui, A.E. Elalaoui, Software-defined networking (SDN): a survey. Secur. Commun. Netw. 9(18), 5803–5833 (2016)
P. Goransson, C. Black, Software defined networks :a comprehensive approach, 1st edn. (Elsevier, USA, 2014), p. 352
N. Gude, T. Koponen, J. Pettit, B. Pfaff, M. Casado, N. McKeown, S. Shenker, NOX: towards an operating system for networks. Proc. ACM SIGCOMM Comput. Commun. Rev. 38(3), 105–110 (2008)
N. Dayal, P. Maity, S. Srivastava, R. Khondoker, Research trends in security and DDoS in SDN. Secur. Commun. Netw. 9(18), 6386–6411 (2016)
A. Akhunzada, E. Ahmed, A. Gani, M.K. Khan, M. Imran, S. Guizani, Securing software defined networks: taxonomy, requirements, and open issues. IEEE Commun. Mag. 53(4), 36–44 (2015)
Z. Shu, J. Wan, D. Li, J. Lin, A.V. Vasilakos, M. Imran, Security in software-defined networking: threats and countermeasures. Mobile Netw. Appl. 21(5), 764–776 (2016)
R. Swami, M. Dave, V. Ranga, Software-defined networking-based DDoS defense mechanisms. ACM Computing Surveys (CSUR) 52(2), 1–36 (2019)
B. Han, X. Yang, Z. Sun, J. Huang, J. Su, OverWatch: a cross-plane DDoS attack defense framework with collaborative intelligence in SDN. Secur. Commun. Netw. (2018)
K. Kalkan, G. Gürkan, F. Alagöz, SDNScore: a statistical defense mechanism against DDoS attacks in SDN environment, in 2017 IEEE Symposium on Computers and Communications (ISCC) (IEEE, 2017), pp. 669–675
J. Boite, P.A. Nardin, F. Rebecchi, M. Bouet, V. Conan, Statesec: stateful monitoring for DDoS protection in software defined networks, in 2017 IEEE Conference on Network Softwarization (NetSoft) (IEEE, 2017), pp. 1–9
Denial-of-Service (DoS) Secured Virtual Tenant Networks (VTN). As Whitepaper by Radware and NEC Corporation (2012)
L. Feinstein, D. Schnackenberg, R. Balupari, D. Kindred, Statistical approaches to DDoS attack detection and response, in Proceedings of the DARPA Information Survivability Conference and Exposition (DISCEX’03) (IEEE, 2003), pp. 303–314
S.M. Mousavi, M. St-Hilaire, Early detection of ddos attacks against software defined network controllers. J. Netw. Syst. Manage. 1–19 (2018)
K.S. Sahoo, D. Puthal, M. Tiwary, J.J. Rodrigues, B. Sahoo, R. Dash, An early detection of low rate DDoS attack to SDN based data center networks using information distance metrics. Futur. Gener. Comput. Syst. 89, 685–697 (2018)
A. Nath, Packet Analysis with Wireshark (Packt Publishing Ltd., UK, 2015), p. 141
hping, Date last accessed 15 Feb 2018 [Online]. Available http://www.hping.org/
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Varghese, J.E., Muniyal, B. (2021). A Pilot Study in Software-Defined Networking Using Wireshark for Analyzing Network Parameters to Detect DDoS Attacks. In: Kaiser, M.S., Xie, J., Rathore, V.S. (eds) Information and Communication Technology for Competitive Strategies (ICTCS 2020). Lecture Notes in Networks and Systems, vol 190. Springer, Singapore. https://doi.org/10.1007/978-981-16-0882-7_41
Download citation
DOI: https://doi.org/10.1007/978-981-16-0882-7_41
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-16-0881-0
Online ISBN: 978-981-16-0882-7
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)