SDN Network DDOS Detection Using ML


Authors : A. Bindu; Ambati Venkata Sai Harika; Dandamudi Swetha; Malli Sahithi

Volume/Issue : Volume 9 - 2024, Issue 5 - May

Google Scholar : https://tinyurl.com/59864mcv

Scribd : https://tinyurl.com/43zmd9ua

DOI : https://doi.org/10.38124/ijisrt/IJISRT24MAY1031

Abstract : This paper describes a technique that uses the Ryu Controller and Mininet to identify and mitigate Distributed Denial of Service (DDoS) threats in Software Defined Networks (SDN). Using Mininet, the suggested method entails building a virtual network topology with connected switches and hosts. The Ryu Controller gathers traffic data while Mininet simulates several DDoS attack types, such as ICMP flood, land assault, TCP SYN flood, and UDP attacks. The Ryu Controller collects both benign and DDoS traffic into a dataset that is used to build a machine learning (ML) model that can detect DDoS attacks in real time.

Keywords : Software-Defined Networking, DDoS , Ryu Controller, Mininet Simulation, Machine Learning , ICMP Flooding, Land Attack Simulation, TCP SYN Flooding, UDP Flooding, Network Security Enhancement, Anomaly Detection, Traffic Classification, Real-time Monitoring, Network Topology Emulation.

References :

  1. Nadeau T, Gray K. SDN: Software Defined Networks. O'Reilly Media; 2013.
  2. Jarschel M, Zinner T, Hossfeld T, Tran-Gia P, Kellerer W. Interfaces, attributes, and use cases: a compass for SDN. IEEE Commun Mag. 2014; 52(6): 210-217. doi:10.1109/MCOM.2014.6829966
  3. Khondoker R, Zaalouk A, Marx R, Bayarou K. Feature-based comparison and selection of software defined networking (SDN) controllers. In. 2014; 1-7.
  4. Correa Chica JC, Imbachi JC, Botero Vega JF. Security in SDN: a comprehensive survey. J Netw Comput Appl. 2020; 159:102595. doi:10.1016/j.jnca.2020.102595
  5. Einy S, Oz C, Navaei YD. The anomaly- and signature-based IDS for network security using hybrid inference systems. Math Probl Eng. 2021. doi:10.1155/2021/6639714
  6. Khraisat A, Gondal I, Vamplew P, Kamruzzaman J. Survey of intrusion detection systems: techniques, datasets and challenges. Cybersecurity. 2019; 2(1). doi:10.1186/s42400-019-0038-7
  7. Rischke J, Sossalla P. Ch. 16 - Machine learning for routing. In: FH Fitzek, F Granelli, P Seeling, eds. Computing in Communication Networks. Academic Press; 2020: 289-296.
  8. Geurts P, Khayat IE, Leduc G. A machine learning approach to improve congestion control over wireless computer networks; 2004; IEEE.
  9. Park G, Lee W, Joe I. Network resource optimization with reinforcement learning for low power wide area networks. EURASIP J Wirel Commun Netw. 2020; 2020(1). doi:10.1186/s13638-020-01783-5
  10. Ali MHE. Deep learning-based pilot-assisted channel state estimator for OFDM systems. IET Commun. 2020; 15(2): 257-264.doi:10.1049/cmu2.12051
  11. Ajaeiya GA, Adalian N, Elhajj IH, Kayssi A, Chehab A. Flow-based intrusion detection system for SDN; 2017: 787-793.
  12. Ye J, Cheng X, Zhu J, Feng L, Song L. A DDoS attack detection method based on SVM in software defined network. Secur Commun Netw. 2018; 2018:9804061. doi:10.1155/2018/9804061
  13. Myint Oo M, Kamolphiwong S, Kamolphiwong T, Vasupongayya S. Advanced support vector machine- (ASVM-) based detection for distributed denial of service (DDoS) attack on software defined networking (SDN). J Comput Netw Commun. 2019; 2019:8012568. doi:10.1155/2019/8012568
  14. Prakash A, Priyadarshini R. An intelligent software defined network controller for preventing distributed denial of service attack; 2018: 585-589.
  15. Polat H, Polat O, Cetin A. Detecting DDoS attacks in software-defined networks through feature selection methods and machine learning models. Sustain For. 2020; 12(3): 1-16.
  16. Elsayed MS, Le-Khac NA, Jurcut AD. InSDN: a novel SDN intrusion dataset. IEEE Access. 2020; 8: 165263-165284. doi:10.1109/ACCESS.2020.3022633
  17. Meti N, Narayan DG, Baligar VP. Detection of distributed denial of service attacks using machine learning algorithms in software defined networks; 2017: 1366-1371.
  18. Kaur K, Singh J, Ghumman N. Mininet as software defined networking testing platform; 2014.
  19. Asadollahi S, Goswami B, Sameer M. Ryu controller's scalability experiment on software defined networks; 2018:1-5.

This paper describes a technique that uses the Ryu Controller and Mininet to identify and mitigate Distributed Denial of Service (DDoS) threats in Software Defined Networks (SDN). Using Mininet, the suggested method entails building a virtual network topology with connected switches and hosts. The Ryu Controller gathers traffic data while Mininet simulates several DDoS attack types, such as ICMP flood, land assault, TCP SYN flood, and UDP attacks. The Ryu Controller collects both benign and DDoS traffic into a dataset that is used to build a machine learning (ML) model that can detect DDoS attacks in real time.

Keywords : Software-Defined Networking, DDoS , Ryu Controller, Mininet Simulation, Machine Learning , ICMP Flooding, Land Attack Simulation, TCP SYN Flooding, UDP Flooding, Network Security Enhancement, Anomaly Detection, Traffic Classification, Real-time Monitoring, Network Topology Emulation.

Video Explanation for Published paper

Never miss an update from Papermashup

Get notified about the latest tutorials and downloads.

Subscribe by Email

Get alerts directly into your inbox after each post and stay updated.
Subscribe
OR

Subscribe by RSS

Add our RSS to your feedreader to get regular updates from us.
Subscribe