Deep Neural Network (DNN) Solution for Real-time Detection of Distributed Denial of Service (DDoS) Attacks in Software Defined Networks (SDNs)

Software-Defined Network (SDN) has emerged as the new big thing in networking. The separation of the control plane from the data plane and application plane gives SDN an edge over traditional networking. With SDN, the devices are configured at the control plane which makes it easier to manage network devices from one central point. However, decoupled architecture creates a single point of failure. A single point of failure attracts cyber-attacks, such as Distributed Denial of Service (DDoS) attacks. Attackers have recently been using multi-vector attacks from single-vector attacks. The need for real-time detection as a countermeasure is of paramount importance. The attackers using sophisticated techniques to launch DDoS attacks dictates the need for a sophisticated intrusion detection system. This paper proposes a Deep Neural Network (DNN) solution for real-time detection of DDoS attacks in SDN. The proposed IDS produced a detection accuracy of 97.59% using fewer resources and less time.

[1]  Majd Latah,et al.  Towards an Efficient Anomaly-Based Intrusion Detection for Software-Defined Networks , 2018, IET Networks.

[2]  Ejaz Ahmed,et al.  Securing software defined networks: taxonomy, requirements, and open issues , 2015, IEEE Communications Magazine.

[3]  João Paulo Barraca,et al.  Fault-Tolerance in the Scope of Software-Defined Networking (SDN) , 2019, IEEE Access.

[4]  Jian Zhu,et al.  SD-Anti-DDoS: Fast and efficient DDoS defense in software-defined networks , 2016, J. Netw. Comput. Appl..

[5]  Sung Won Kim,et al.  Hybrid Deep Learning: An Efficient Reconnaissance and Surveillance Detection Mechanism in SDN , 2020, IEEE Access.

[6]  Yi-Bing Lin,et al.  Detecting P2P Botnet in Software Defined Networks , 2018, Secur. Commun. Networks.

[7]  Yonggang Wen,et al.  “ A Survey of Software Defined Networking , 2020 .

[8]  Po-Ching Lin,et al.  An Unsupervised Deep Learning Model for Early Network Traffic Anomaly Detection , 2020, IEEE Access.

[9]  Fernando M. V. Ramos,et al.  Software-Defined Networking: A Comprehensive Survey , 2014, Proceedings of the IEEE.

[10]  Riyazahmed A. Jamadar Network Intrusion Detection System Using Machine Learning , 2018 .

[11]  Joel J. P. C. Rodrigues,et al.  Hybrid Deep-Learning-Based Anomaly Detection Scheme for Suspicious Flow Detection in SDN: A Social Multimedia Perspective , 2019, IEEE Transactions on Multimedia.

[12]  Qi Shi,et al.  A Deep Learning Approach to Network Intrusion Detection , 2018, IEEE Transactions on Emerging Topics in Computational Intelligence.

[13]  Hüseyin Polat,et al.  Detecting DDoS Attacks in Software-Defined Networks Through Feature Selection Methods and Machine Learning Models , 2020, Sustainability.

[14]  Parman Sukarno,et al.  Improving AdaBoost-based Intrusion Detection System (IDS) Performance on CIC IDS 2017 Dataset , 2019, Journal of Physics: Conference Series.

[15]  Fabio L. Traversa,et al.  Accelerating Deep Learning with Memcomputing , 2018, Neural Networks.

[16]  Xiaolin Li,et al.  Detection and defense of DDoS attack–based on deep learning in OpenFlow‐based SDN , 2018, Int. J. Commun. Syst..

[17]  Nick Feamster,et al.  Improving network management with software defined networking , 2013, IEEE Commun. Mag..