DDoS Detection Using a Cloud-Edge Collaboration Method Based on Entropy-Measuring SOM and KD-Tree in SDN-Reference-Cited by-同舟云学术

DDoS Detection Using a Cloud-Edge Collaboration Method Based on Entropy-Measuring SOM and KD-Tree in SDN

Published:2021-04-10 Issue: Volume:2021 Page:1-16
ISSN:1939-0122
Container-title:Security and Communication Networks
language:en
Short-container-title:Security and Communication Networks

Author:

Xu Yuhua¹^ORCID,Yu Yunfeng²^ORCID,Hong Hanshu¹^ORCID,Sun Zhixin¹^ORCID

Affiliation:

1. Engineering Research Center of Post Big Data Technology and Application of Jiangsu Province, Research and Development Center of Post Industry Technology of the State Posts Bureau (Internet of Things Technology), Engineering Research Center of Broadband Wireless Communication Technology of the Ministry of Education, Nanjing University of Posts and Telecommunications, Nanjing 210003, China

2. Guoji Beisheng (Nanjing) Technology Development Co., Ltd, Nanjing 210003, China

Abstract

Software-defined networking (SDN) emerges as an innovative network paradigm, which separates the control plane from the data plane to improve the network programmability and flexibility. It is widely applied in the Internet of Things (IoT). However, SDN is vulnerable to DDoS attacks, which can cause network disasters. In order to protect SDN security, a DDoS detection method using cloud-edge collaboration based on Entropy-Measuring Self-organizing Maps and KD-tree (EMSOM-KD) is designed for SDN. Entropy measurement is utilized to select the ideal SOM map and classify SOM neurons considering the limitation of dead and suspicious neurons. EMSOM can detect most flows directly and filter out a few doubtable flows. Then these flows are fine-grained, identified by KD-tree. Due to the limited and precious resources of the controller, parameter computation is performed in the cloud. The edge controller implements DDoS detection by EMSOM-KD. The experiments are conducted to evaluate the performance of the proposed method. The results show that EMSOM-KD has better detection accuracy; moreover, it improves the KD-tree detection efficiency.

Funder

National Natural Science Foundation of China

Publisher

Hindawi Limited

Subject

Computer Networks and Communications,Information Systems

Link

http://downloads.hindawi.com/journals/scn/2021/5594468.pdf

Reference38 articles.

1. Classifier for DDoS attack detection in software defined networks;G. Kaur;Internet of Things in Business Transformation: Developing an Engineering and Business Strategy for Industry 5.0,2021

2. SAFE: SDN-assisted framework for edge–cloud interplay in secure healthcare ecosystem;S. A. Gagangeet;IEEE Transactions On Industrial Informatics,2019

3. Interaction of Edge-Cloud Computing Based on SDN and NFV for Next Generation IoT

4. Orchestration of optical networks and cloud/edge computing for IoT services;R. Muñoz,2019

5. Advanced study of SDN/OpenFlow controllers;A. Shalimov

Cited by 10 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. DDoS attacks & defense mechanisms in SDN-enabled cloud: Taxonomy, review and research challenges;Computer Science Review;2024-08

2. Time‐based DDoS attack detection through hybrid LSTM‐CNN model architectures: An investigation of many‐to‐one and many‐to‐many approaches;Concurrency and Computation: Practice and Experience;2024-02-14

3. Overview of DDoS Attack Detection in Software-Defined Networks;IEEE Access;2024

4. Retracted: DDoS Detection Using a Cloud-Edge Collaboration Method Based on Entropy-Measuring SOM and KD-Tree in SDN;Security and Communication Networks;2023-12-29

5. A Review of Detecting DDoS Attacks Based on Entropy Computation;2023 12th International Conference on System Modeling & Advancement in Research Trends (SMART);2023-12-22