Application to Detect and Mitigate DoS Attack in Software-Defined Networking

Abstract

Despite the emergence of new network paradigms such as software-defined networking, security issues are still one of the main challenges in nowadays networks that implement these new paradigms. This article presents the results of deploying the application to detect and mitigate DoS attacks in various network topologies. The application installs a group of rules which control the forwarding of the data and save statistics about the network traffic regardless of the type of topology. The application estimates the throughput of different connections in the network and determines the presence of a DoS attack. Rules to drop the packets of the problematic flows are installed in case of the attack. The application has been implemented using OpenDaylight platform. The functionality of the proposed application in various network topologies has been simulated in Mininet emulator.