Comparative Study of AI-Enabled DDoS Detection Technologies in SDN-Reference-Cited by-同舟云学术

Comparative Study of AI-Enabled DDoS Detection Technologies in SDN

Published:2023-08-22 Issue:17 Volume:13 Page:9488
ISSN:2076-3417
Container-title:Applied Sciences
language:en
Short-container-title:Applied Sciences

Author:

Ko Kwang-Man¹^ORCID,Baek Jong-Min¹,Seo Byung-Suk¹^ORCID,Lee Wan-Bum²^ORCID

Affiliation:

1. Department of Computer Engineering, Sangji University, Wonju City 26339, Republic of Korea

2. Department of Computer and Software Engineering, Wonkwang University, Iksan City 54538, Republic of Korea

Abstract

Software-defined networking (SDN) is becoming the standard for the management of networks due to its scalability and flexibility to program the network. SDN provides many advantages but it also involves some specific security problems; for example, the controller can be taken down using cyber attacks, which can result in the whole network shutting down, creating a single point of failure. In this paper, DDoS attacks in SDN are detected using AI-enabled machine and deep learning models with some specific features for a dataset under normal DDoS traffic. In our approach, the initial dataset is collected from 84 features on Kaggle and then the 20 top features are selected using a permutation importance algorithm. The dataset is learned and tested with five AI-enabled models. Our experimental results show that the use of a machine learning-based random forest model achieves the highest accuracy rate of 99.97% in DDoS attack detection in SDN. Our contributions through this study are, firstly, that we found the top 20 features that contributed to DDoS attacks. Secondly, we reduce the time and cost of comparing various learning models and their performance in determining a learning model suitable for DDoS detection. Finally, various experimental methods to evaluate the performance of the learning model are presented so that related researchers can utilize them.

Funder

Wonkwang University

Publisher

MDPI AG

Subject

Fluid Flow and Transfer Processes,Computer Science Applications,Process Chemistry and Technology,General Engineering,Instrumentation,General Materials Science

Link

https://www.mdpi.com/2076-3417/13/17/9488/pdf

Reference38 articles.

1. A DDoS Attack Detection Technique through CNN Model in Software Define Network;Ko;J. Korea Inst. Inf. Electron. Commun. Technol.,2020

2. Toward an optimal solution against denial of service attacks in software defined networks;Imran;Future Gener. Comput. Syst.,2019

3. Rahman, O., Quraishi, M.A.G., and Lung, C.H. (2019, January 8–13). DDoS attacks detection and mitigation in SDN using machine learning. Proceedings of the 2019 IEEE World Congress on Services (SERVICES), Milan, Italy.

4. Tselios, C., Politis, I., and Kotsopoulos, S. (2017, January 6–8). Enhancing SDN security for IoT-related deployments through blockchain. Proceedings of the 2017 IEEE Conference on Network Function Virtualization and Software Defined Networks (NFV-SDN), Berlin, Germany.

5. Cost Effective Network Flow Measurement for Software Defined Networks: A Distributed Controller Scenario;Tahaei;IEEE Access,2018

Cited by 4 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Deep Learning Models Comparison in binary context for DDoS Attack Detection in Software-Defined Network;2024 IEEE 7th International Conference on Advanced Technologies, Signal and Image Processing (ATSIP);2024-07-11

2. Mitigating DDoS Attack in SDN Using Random Forest Classifier–Based Flow Table Analysis with Ryu Controller;2024 2nd International Conference on Advancement in Computation & Computer Technologies (InCACCT);2024-05-02

3. Exploring the Landscape of AI-SDN: A Comprehensive Bibliometric Analysis and Future Perspectives;Electronics;2023-12-20

4. A new cloud-based cyber-attack detection architecture for hyper-automation process in industrial internet of things;Cluster Computing;2023-11-02