On an Integrated Security Framework for Defense Against Various DDoS Attacks in SDN

Hao Wu, Aiqin Hou, Weike Nie, Chase Wu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Scopus citations

Abstract

As a new network paradigm, software-defined networking (SDN) technology has been increasingly adopted. Unfortunately, SDN-enabled networks are more prone to threats from DDoS attacks than traditional networks due to the nature of centralized management. We propose an integrated defense framework to detect and mitigate various types of DDoS attacks in SDN-enabled networks. The proposed framework deploys two technical modules in the control plane of SDN for defending against high-rate and low-rate DDoS attacks, respectively. The former module consists of three components, which watch out for suspicious traffic, detect attacks using ensemble learning, and intercept malicious packets, respectively. The latter module is designed specifically to defend against the Slow Ternary Content Addressable Memory (TCAM) exhaustion attack (Slow-TCAM) using a new Alleviative Threat for TCAM (ATFT) algorithm. The proposed framework is implemented and tested in simulated networks using Mininet and further evaluated on the CICDDoS2019 dataset. Experimental results illustrate the superior performance of the proposed framework in defending against different types of DDoS attacks in comparison with other state-of-the-art algorithms.

Original languageEnglish (US)
Title of host publication2023 International Conference on Computing, Networking and Communications, ICNC 2023
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages311-317
Number of pages7
ISBN (Electronic)9781665457194
DOIs
StatePublished - 2023
Event2023 International Conference on Computing, Networking and Communications, ICNC 2023 - Honolulu, United States
Duration: Feb 20 2023Feb 22 2023

Publication series

Name2023 International Conference on Computing, Networking and Communications, ICNC 2023

Conference

Conference2023 International Conference on Computing, Networking and Communications, ICNC 2023
Country/TerritoryUnited States
CityHonolulu
Period2/20/232/22/23

All Science Journal Classification (ASJC) codes

  • Artificial Intelligence
  • Computer Networks and Communications
  • Computer Science Applications
  • Computer Vision and Pattern Recognition
  • Information Systems and Management

Keywords

  • Slow-TCAM attack
  • Software-Defined Networking
  • attack defense
  • high-rate DDoS attack
  • low-rate DDoS attack

Fingerprint

Dive into the research topics of 'On an Integrated Security Framework for Defense Against Various DDoS Attacks in SDN'. Together they form a unique fingerprint.

Cite this