Robust Self-Protection Against Application-Layer (D)DoS Attacks in SDN Environment

The expected high bandwidth of 5G and the envisioned massive number of connected devices will open the door to increased and sophisticated attacks, such as application-layer DDoS attacks. Application-layer DDoS attacks are complex to detect and mitigate due to their stealthy nature and their ability to mimic genuine behavior. In this work, we propose a robust application-layer DDoS self-protection framework that empowers a fully autonomous detection and mitigation of the application-layer DDoS attacks leveraging on Deep Learning (DL) and SDN enablers. The DL models have been proven vulnerable to adversarial attacks, which aim to fool the DL model into taking wrong decisions. To overcome this issue, we build a DL-based application-layer DDoS detection model that is robust to adversarial examples. The performance results show the effectiveness of the proposed framework in protecting against application-layer DDoS attacks even in the presence of adversarial attacks.

[1]  Naveen K. Chilamkurti,et al.  Survey on SDN based network intrusion detection system using machine learning approaches , 2018, Peer-to-Peer Networking and Applications.

[2]  Blaine Nelson,et al.  Can machine learning be secure? , 2006, ASIACCS '06.

[3]  Tarik Taleb,et al.  A Survey on Emerging SDN and NFV Security Mechanisms for IoT Systems , 2019, IEEE Communications Surveys & Tutorials.

[4]  Tarik Taleb,et al.  AI-Driven Zero Touch Network and Service Management in 5G and Beyond: Challenges and Research Directions , 2020, IEEE Network.

[5]  P. Santhi Thilagam,et al.  DDoS Attacks at the Application Layer: Challenges and Research Perspectives for Safeguarding Web Applications , 2019, IEEE Communications Surveys & Tutorials.

[6]  Mounir Ghogho,et al.  Deep Recurrent Neural Network for Intrusion Detection in SDN-based Networks , 2018, 2018 4th IEEE Conference on Network Softwarization and Workshops (NetSoft).

[7]  Tarik Taleb,et al.  ZSM Security: Threat Surface and Best Practices , 2020, IEEE Network.

[8]  Rodrigo Braga,et al.  Lightweight DDoS flooding attack detection using NOX/OpenFlow , 2010, IEEE Local Computer Network Conference.

[9]  Sunny Behal,et al.  Distributed Denial of Service Attacks and Defense Mechanisms: Current Landscape and Future Directions , 2018 .

[10]  Ali A. Ghorbani,et al.  Toward Generating a New Intrusion Detection Dataset and Intrusion Traffic Characterization , 2018, ICISSP.

[11]  Tarik Taleb,et al.  Assessing Lightweight Virtualization for Security-as-a-Service at the Network Edge , 2019, IEICE Trans. Commun..

[12]  Bogdan V. Ghita,et al.  Detection of LDDoS Attacks Based on TCP Connection Parameters , 2018, 2018 Global Information Infrastructure and Networking Symposium (GIIS).

[13]  Girish Chowdhary,et al.  Robust Deep Reinforcement Learning with Adversarial Attacks , 2017, AAMAS.

[14]  Teuvo Kohonen,et al.  The self-organizing map , 1990, Neurocomputing.

[15]  Christopher Leckie,et al.  Reinforcement Learning for Autonomous Defence in Software-Defined Networking , 2018, GameSec.

[16]  Md. Zakirul Alam Bhuiyan,et al.  A New Machine Learning-based Collaborative DDoS Mitigation Mechanism in Software-Defined Network , 2018, 2018 14th International Conference on Wireless and Mobile Computing, Networking and Communications (WiMob).

[17]  F. Richard Yu,et al.  Software-Defined Networking (SDN) and Distributed Denial of Service (DDoS) Attacks in Cloud Computing Environments: A Survey, Some Research Issues, and Challenges , 2016, IEEE Communications Surveys & Tutorials.

[18]  Hamed Haddadi,et al.  Deep Learning in Mobile and Wireless Networking: A Survey , 2018, IEEE Communications Surveys & Tutorials.

[19]  Jonathon Shlens,et al.  Explaining and Harnessing Adversarial Examples , 2014, ICLR.

[20]  Kiwon Hong,et al.  SDN-Assisted Slow HTTP DDoS Attack Defense Method , 2018, IEEE Communications Letters.

[21]  Tarik Taleb,et al.  Lightweight Virtualization Based Security Framework for Network Edge , 2018, 2018 IEEE Conference on Standards for Communications and Networking (CSCN).