A Machine Learning Framework for Prevention of Software-Defined Networking controller from DDoS Attacks and dimensionality reduction of big data

The controller is an indispensable entity in software-defined networking (SDN), as it maintains a global view of the underlying network. However, if the controller fails to respond to the network due to a distributed denial of service (DDoS) attacks. Then, the attacker takes charge of the whole network via launching a spoof controller and can also modify the flow tables. Hence, faster, and accurate detection of DDoS attacks against the controller will make the SDN reliable and secure. Moreover, the Internet traffic is drastically increasing due to unprecedented growth of connected devices. Consequently, the processing of large number of requests cause a performance bottleneck regarding SDN controller. In this paper, we propose a hierarchical control plane SDN architecture for multi-domain communication that uses a statistical method called principal component analysis (PCA) to reduce the dimensionality of the big data traffic and the support vector machine (SVM) classifier is employed to detect a DDoS attack. SVM has high accuracy and less false positive rate while the PCA filters attribute drastically. Consequently, the performance of classification and accuracy is improved while the false positive rate is reduced.

[1]  B. Fei,et al.  Binary tree of SVM: a new fast multiclass training and classification algorithm , 2006, IEEE Transactions on Neural Networks.

[2]  Jennifer Rexford,et al.  Sensitivity of PCA for traffic anomaly detection , 2007, SIGMETRICS '07.

[3]  Martin May,et al.  Applying PCA for Traffic Anomaly Detection: Problems and Solutions , 2009, IEEE INFOCOM 2009.

[4]  Kensuke Fukuda,et al.  Anomaly detection in IP networks with principal component analysis , 2009, 2009 9th International Symposium on Communications and Information Technology.

[5]  Steven J. Vaughan-Nichols,et al.  OpenFlow: The Next Generation of the Network? , 2011, Computer.

[6]  I. Maqsood,et al.  Random Forests and Decision Trees , 2012 .

[7]  S. Thamarai Selvi,et al.  DDoS detection and analysis in SDN-based environment using support vector machine classifier , 2014, 2014 Sixth International Conference on Advanced Computing (ICoAC).

[8]  Thierry Turletti,et al.  A Survey of Software-Defined Networking: Past, Present, and Future of Programmable Networks , 2014, IEEE Communications Surveys & Tutorials.

[9]  Kumudu S. Munasinghe,et al.  A heterogeneous software defined networking architecture for the tactical edge , 2016, 2016 Military Communications and Information Systems Conference (MilCIS).

[10]  B. Surendiran,et al.  Dimensionality reduction using Principal Component Analysis for network intrusion detection , 2016 .

[11]  Jun Huang,et al.  An Effective Approach to Controller Placement in Software Defined Wide Area Networks , 2018, IEEE Transactions on Network and Service Management.

[12]  Byeong-Hee Roh,et al.  QoS improvement with an optimum controller selection for software-defined networks , 2019, PloS one.

[13]  Jehad Ali,et al.  A Framework for QoS-aware Class Mapping in Multi-domain SDN , 2019, 2019 IEEE 10th Annual Information Technology, Electronics and Mobile Communication Conference (IEMCON).

[14]  Mudar Sarem,et al.  DDoS Attack Detection Method Based on Improved KNN With the Degree of DDoS Attack in Software-Defined Networks , 2020, IEEE Access.

[15]  Philippe Owezarski,et al.  Towards Dynamic Controller Placement in Software Defined Vehicular Networks , 2020, Sensors.

[16]  Andrew Hines,et al.  5G network slicing using SDN and NFV- A survey of taxonomy, architectures and future challenges , 2019, Comput. Networks.

[17]  Byeong-Hee Roh,et al.  An Effective Hierarchical Control Plane for Software-Defined Networks Leveraging TOPSIS for End-to-End QoS Class-Mapping , 2020, IEEE Access.