Abstract
Software defined networking, as a new network architecture, has the advantages of numerical control separation, open interfaces, and network virtualization. However, the new network architecture of SDN still faces the risk of being attacked by DDoS. DDoS attacks not only damage the hosts in the SDN network, but also have a serious impact on the entire SDN. This paper uses PCA to analyze network traffic and detect DDoS attacks. The experimental results show that PCA detection can detect DDoS attacks well.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Software-DefinedNetworking (SDN) Definition. https://www.opennetworking.org/sdn-definition/
Kazemian, P., Chang, M., Zeng, H., et al.: Real time network policy checking using header space analysis. In: Presented as part of the 10th {USENIX} Symposium on Networked Systems Design and Implementation ({NSDI} 13), pp. 99–111 (2013)
Khurshid, A., Zou, X., Zhou, W., et al.: Veriflow: verifying network-wide invariants in real time. In: Presented as part of the 10th {USENIX} Symposium on Networked Systems Design and Implementation ({NSDI} 13), pp. 15–27 (2013)
Porras, P., Shin, S., Yegneswaran, V., et al.: A security enforcement kernel for OpenFlow networks. In: Proceedings of the first workshop on Hot topics in Software Defined Networks,pp. 121–126 (2012)
Shirali-Shahreza, S., Ganjali, Y.: Rewiflow: restricted wildcard openflowrules. ACM SIGCOMM Comput. Commun. Rev. 45(5), 29–35 (2015)
Yorozu, Y., Hirano, M., Oka, K., Tagawa, Y.: Electron spectroscopy studies on magneto-optical media and plastic substrate interface. IEEE Transl. J. Magn. Japan 2, 740–741 (1987)
Wang, M., Zhou, H., Chen, J., et al.: An approach for protecting the openflow switch from the saturation attack. In: 2015 4th National Conference on Electrical, Electronics and Computer Engineering. Atlantis Press (2015)
Garg G, Garg, R.: Detecting anomalies efficiently in SDN using adaptive mechanism. In: 2015 Fifth International Conference on Advanced Computing & Communication Technologies, pp. 367–370. IEEE (2015)
Hong, S., Xu, L., Wang, H., et al.: Poisoning network visibility in software-defined networks: new attacks and countermeasures. In: NDSS, vol. 15, pp. 8–11 (2015)
Dong, P., Du, X., Zhang, H., et al.: A detection method for a novel DDoS attack against SDN controllers by vast new low-traffic flows. In: 2016 IEEE International Conference on Communications (ICC), pp. 1–6. IEEE (2016)
Mousavi, S.M., St-Hilaire, M.: Early detection of DDoS attacks against SDN controllers. In: 2015 International Conference on Computing, Networking and Communications (ICNC), pp. 77–81. IEEE (2015)
Openflow-switch-v1.5.1. https://www.opennetworking.org/wp-content/uploads/2014/10/openflow-switch-v1.5.1.pdf. 14 Jan 2020
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 The Editor(s) (if applicable) and The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Han, Lq., Zhang, Y. (2021). PCA-Based DDoS Attack Detection of SDN Environments. In: Atiquzzaman, M., Yen, N., Xu, Z. (eds) Big Data Analytics for Cyber-Physical System in Smart City. BDCPS 2020. Advances in Intelligent Systems and Computing, vol 1303. Springer, Singapore. https://doi.org/10.1007/978-981-33-4572-0_204
Download citation
DOI: https://doi.org/10.1007/978-981-33-4572-0_204
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-33-4573-7
Online ISBN: 978-981-33-4572-0
eBook Packages: Computer ScienceComputer Science (R0)