A Machine Learning Approach for Predicting DDoS Traffic in Software Defined Networks

2018 International Conference on Information Technology (ICIT) Pub Date : 2018-12-01 DOI:10.1109/ICIT.2018.00049

Kshira Sagar Sahoo, Amaan Iqbal, P. Maiti, B. Sahoo

{"title":"A Machine Learning Approach for Predicting DDoS Traffic in Software Defined Networks","authors":"Kshira Sagar Sahoo, Amaan Iqbal, P. Maiti, B. Sahoo","doi":"10.1109/ICIT.2018.00049","DOIUrl":null,"url":null,"abstract":"Software Defined Networks (SDN) paradigm was introduced to overcome the limitations of the traditional network such as vendor dependencies, inconsistency policies, etc. It becomes a promising network architecture that provides the operators more control over the network infrastructure. The controller also called the operating system of the SDN has the centralized control over the network. Despite all its capabilities, the introduction of various architectural entities poses many security threats to SDN layers. Among many such security issues, Distributed Denial of Services (DDoS) is a rapidly growing attack that poses a tremendous threat to SDN. It targets to the availability of the network, by flooding the controller with spoofed packets. It causes the controller to become paralyzed, and thereby the entire network becomes destabilize. Therefore, it is essential to design a robust DDoS detection mechanism to prevent the control plane attack. In this regard, we have used seven Machine Learning techniques to accurately classify and predict different DDoS attacks like Smurf, UDP flood, and HTTP flood. Experimental results with proper analysis have been presented in this work.","PeriodicalId":221269,"journal":{"name":"2018 International Conference on Information Technology (ICIT)","volume":"296 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"19","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 International Conference on Information Technology (ICIT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICIT.2018.00049","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 19

Abstract

Software Defined Networks (SDN) paradigm was introduced to overcome the limitations of the traditional network such as vendor dependencies, inconsistency policies, etc. It becomes a promising network architecture that provides the operators more control over the network infrastructure. The controller also called the operating system of the SDN has the centralized control over the network. Despite all its capabilities, the introduction of various architectural entities poses many security threats to SDN layers. Among many such security issues, Distributed Denial of Services (DDoS) is a rapidly growing attack that poses a tremendous threat to SDN. It targets to the availability of the network, by flooding the controller with spoofed packets. It causes the controller to become paralyzed, and thereby the entire network becomes destabilize. Therefore, it is essential to design a robust DDoS detection mechanism to prevent the control plane attack. In this regard, we have used seven Machine Learning techniques to accurately classify and predict different DDoS attacks like Smurf, UDP flood, and HTTP flood. Experimental results with proper analysis have been presented in this work.

查看原文本刊更多论文

软件定义网络中预测DDoS流量的机器学习方法

软件定义网络(SDN)模式的引入是为了克服传统网络的局限性，如供应商依赖性、不一致策略等。它为运营商提供了对网络基础设施的更多控制，成为一种很有前途的网络体系结构。控制器也称为SDN的操作系统，对网络进行集中控制。尽管SDN具有各种功能，但各种体系结构实体的引入给SDN层带来了许多安全威胁。在众多安全问题中，分布式拒绝服务攻击(DDoS)是一种快速增长的攻击，对SDN造成了巨大的威胁。它的目标是网络的可用性，通过向控制器发送大量欺骗数据包。它会导致控制器瘫痪，从而导致整个网络变得不稳定。因此，设计一种健壮的DDoS检测机制来防止控制平面的攻击至关重要。在这方面，我们使用了七种机器学习技术来准确分类和预测不同的DDoS攻击，如Smurf, UDP flood和HTTP flood。本文给出了经过适当分析的实验结果。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 International Conference on Information Technology (ICIT)

自引率

0.00%

发文量