Detection and defense of DDoS attack-based on deep learning in OpenFlow-based SDN

被引：120

作者：

Li, Chuanhuang ^{[1
]}

Wu, Yan ^{[1
]}

Yuan, Xiaoyong ^{[2
]}

Sun, Zhengjun ^{[1
]}

Wang, Weiming ^{[1
]}

Li, Xiaolin ^{[2
]}

Gong, Liang ^{[1
]}

机构：

[1] Zhejiang Gongshang Univ, Sch Informat & Elect Engn, Hangzhou 310000, Zheiang, Peoples R China

[2] Univ Florida, Large Scale Intelligent Syst Lab, Gainesville, FL 32611 USA

来源：

INTERNATIONAL JOURNAL OF COMMUNICATION SYSTEMS | 2018年 / 31卷 / 05期

基金：

中国国家自然科学基金;

关键词：

DDoS defense; DDoS detection; deep learning; distributed denial of service; Software-Defined Network;

D O I：

10.1002/dac.3497

中图分类号：

TM [电工技术]; TN [电子技术、通信技术];

学科分类号：

0808 ; 0809 ;

摘要：

Distributed denial of service (DDoS) is a special form of denial of service attack. In this paper, a DDoS detection model and defense system based on deep learning in Software-Defined Network (SDN) environment are introduced. The model can learn patterns from sequences of network traffic and trace network attack activities in a historical manner. By using the defense system based on the model, the DDoS attack traffic can be effectively cleaned in Software-Defined Network. The experimental results demonstrate the much better performance of our model compared with conventional machine learning ways. It also reduces the degree of dependence on environment, simplifies the real-time update of detection system, and decreases the difficulty of upgrading or changing detection strategy.

引用

页数：15

共 50 条

[21] DDoS attack detection in SDN: Enhancing entropy-based detection with machine learning
Santos-Neto, Marcos J.
Bordim, Jacir L.
Alchieri, Eduardo A. P.
Ishikawa, Edison
CONCURRENCY AND COMPUTATION-PRACTICE & EXPERIENCE, 2024, 36 (11):
[22] A cooperative DDoS attack detection scheme based on entropy and ensemble learning in SDN
Shanshan Yu
Jicheng Zhang
Ju Liu
Xiaoqing Zhang
Yafeng Li
Tianfeng Xu
EURASIP Journal on Wireless Communications and Networking, 2021
[23] Federated Incremental Learning Based DDoS Attack Detection Model in SDN Environment
Liu, Yan-Hua
Fang, Wen-Yu
Guo, Wen-Zhong
Zhao, Bao-Kang
Huang, Wei
Jisuanji Xuebao/Chinese Journal of Computers, 2024, 47 (12): : 2852 - 2866
[24] A cooperative DDoS attack detection scheme based on entropy and ensemble learning in SDN
Yu, Shanshan
Zhang, Jicheng
Liu, Ju
Zhang, Xiaoqing
Li, Yafeng
Xu, Tianfeng
EURASIP JOURNAL ON WIRELESS COMMUNICATIONS AND NETWORKING, 2021, 2021 (01)
[25] DDoS ATTACK DETECTION METHODS BASED ON DEEP LEARNING IN HEALTHCARE
Wang, Chaoying
Zhu, Ting
JOURNAL OF MECHANICS IN MEDICINE AND BIOLOGY, 2023, 23 (04)
[26] Multi-SDN Based Cooperation Scheme for DDoS Attack Defense
He, Boren
Zou, Futai
Wu, Yue
2018 THIRD INTERNATIONAL CONFERENCE ON SECURITY OF SMART CITIES, INDUSTRIAL CONTROL SYSTEM AND COMMUNICATIONS (SSIC), 2018,
[27] Defending Blind DDoS Attack on SDN Based on Moving Target Defense
Ma, Duohe
Xu, Zhen
Lin, Dongdai
INTERNATIONAL CONFERENCE ON SECURITY AND PRIVACY IN COMMUNICATION NETWORKS, SECURECOMM 2014, PT I, 2015, 152 : 463 - 480
[28] TDDAD: Time-Based Detection and Defense Scheme Against DDoS Attack on SDN Controller
Cui, Jie
He, Jiantao
Xu, Yan
Zhong, Hong
INFORMATION SECURITY AND PRIVACY, 2018, 10946 : 649 - 665
[29] Secure SDN-IoT Framework for DDoS Attack Detection Using Deep Learning and Counter Based Approach
Cherian, Mimi
Varma, Satishkumar L.
JOURNAL OF NETWORK AND SYSTEMS MANAGEMENT, 2023, 31 (03)
[30] SDN-Based Architecture for Transport and Application Layer DDoS Attack Detection by Using Machine and Deep Learning
Yungaicela-Naula, Noe Marcelo
Vargas-Rosales, Cesar
Perez-Diaz, Jesus Arturo
IEEE ACCESS, 2021, 9 : 108495 - 108512

← 1 2 3 4 5 →