1,245 Hits in 6.2 sec

Entropy-based distributed denial of service attack detection in software-defined networking

Mohammed Ibrahim Kareem, Mahdi Nsaif Jasim
2022 Indonesian Journal of Electrical Engineering and Computer Science  
This work shows how distributed denial of service (DDoS) attack detection is based on the entropy variation of the destination IP address.  ...  Software defined networking (SDN) is a new network architecture that allows for centralized network control.  ...  [20] , the authors proposed joint entropy based DDoS defense mechanism scheme in SDN.  ... 
doi:10.11591/ijeecs.v27.i3.pp1542-1549 fatcat:r54wu44pkvdm3pjnz7mfymw5om

Proposed statistical-based approach for detecting distribute denial of service against the controller of software defined network (SADDCS)

Mohammad A. AL-Adaileh, Mohammed Anbar, Yung-Wey Chong, Ahmed Al-Ani, W. Martiningsih, R. Wiryadinata, S. Praptodiyono, M.I. Santoso, I. Saraswati
2018 MATEC Web of Conferences  
Software-defined networkings (SDNs) have grown rapidly in recent years be-cause of SDNs are widely used in managing large area networks and securing networks from Distributed Denial of Services (DDoS)  ...  This study proposes a new approach to detecting DDoS attacks. The approach is called the statistical-based approach for detecting DDoS against the controllers of software-defined networks.  ...  A hybrid mechanism based on security analysis is proposed in [9] to defend against DDoS attacks. This mechanism involves the use of a trust value and an entropy concept for detection purposes.  ... 
doi:10.1051/matecconf/201821802012 fatcat:25idauiomjar7gatk74pvub3rm

Improving Distributed Denial of Service (DDOS) Detection using Entropy Method in Software Defined Network (SDN)

Maman Abdurohman, Dani Prasetiawan, Fazmah Arif Yulianto
2017 ComTech  
This research proposed a new method to enhance Distributed Denial of Service (DDoS) detection attack on Software Defined Network (SDN) environment.  ...  This research utilized the OpenFlow controller of SDN for DDoS attack detection using modified method and regarding entropy value.  ...  This method utilizes entropy value to ensure the detection of DDoS attack. II. METHODS Software Defined Network (SDN) is the new paradigm of networking.  ... 
doi:10.21512/comtech.v8i4.3902 fatcat:auu3a5f6gfgy5irhmesnxbrmiq

An Entropy-Based DDoS Defense Mechanism in Software Defined Networks [chapter]

Yajie Jiang, Xiaoning Zhang, Quan Zhou, Zijing Cheng
2017 Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering  
The issue on defensing against Distributed Denial of Service (DDoS) attacks in Software Defined Networks (SDN) has been highly concerned by academe and industry.  ...  Accordingly we design a novel effective Entropy-based DDoS Defense Mechanism (EDDM) running on the SDN controller, which including a two-stage DDoS detection method.  ...  Fig. 1 . 1 The main flow chart of EDDM Fig. 3 .Fig. 4 . 34 The test network topology The packet rate of the zombie host and the normal host without EDDM An Entropy-Based DDoS Defense Mechanism in SDN  ... 
doi:10.1007/978-3-319-66625-9_17 fatcat:yfkefmfu4nf7pfqkpscs6dgmce

The Forensics of DDoS Attacks in the Fifth Generation Mobile Networks Based on Software-Defined Networks

Shahrzad Sedaghat
2020 International Journal of Network Security  
In this study, an approach based on SDN (Software Defined Network) and NFV (Network Functions Virtualization) technologies were presented for the purpose of network forensics and DDoS attack detection.  ...  In this approach, the entropy-based methods were used as a warning for DDoS attacks.  ...  [14] presented an approach called AVANT-GUARD for managing the flows in the software-defined networks based on the open flow.  ... 
dblp:journals/ijnsec/Sedaghat20 fatcat:w5ajldhf75hzzccfx3plvhblvi

Detecting Ddos Attack Using Adaptive Boosting with Software Defined Network in Cloud Computing Environment

Sisay Wayu Tufa
2021 Revista GEINTEC  
So these interrupts are detected and then prevented in SDN with the technology. Detecting of DDoS attack by using anomaly-based adaptive boosting in SDN cloud environment is presented in this paper.  ...  Cloud computing and software defined network (SDN) combination gives the better environment which reduces the difficulties with the cloud network and improves the dynamism, programmability, scalability  ...  Conclusion In this paper, cloud computing environment based software defined network system DDoS attacks are noticed and prevented.  ... 
doi:10.47059/revistageintec.v11i4.2387 fatcat:3snqcqto3zgxfhi5fbue33mjoq

S-DPS: An SDN-Based DDoS Protection System for Smart Grids

Hassan Mahmood, Danish Mahmood, Qaisar Shaheen, Rizwan Akhtar, Wang Changda, Shehzad Chaudhry
2021 Security and Communication Networks  
The proposed approach, i.e., Software Defined Networking-based DDoS Protection System (S-DPS), is efficiently addressing these issues by employing light-weight Tsallis entropy-based defense mechanisms  ...  Recently, emerging Software Defined Networking- (SDN-) based approaches are proposed by researchers for SG's DDoS protection; however, they are only able to protect against flooding attacks and are dependent  ...  Lastly, software-based control of SDN provides IP address/ port blocking mechanisms as a built-in feature.  ... 
doi:10.1155/2021/6629098 fatcat:b5pxdot5mnelphz6iqynl2uksq

A Fuzzy Logic Based Defense Mechanism against Distributed Denial of Services Attack in Cloud Environment

N. Ch. S. N. Iyengar, Arindam Banerjee, Gopinath Ganapathy
2014 International Journal of Communication Networks and Information Security  
In this paper we propose a fuzzy logic based defense mechanism that can be set with predefined rules by which it can detect the malicious packets and takes proper counter measures to mitigate the DDoS  ...  Cloud defines a new age of computing solution that provides services to customers with its unique features of agility and multi-tenancy.  ...  [63] proposed a neural network based anomaly detection scheme in grid and cloud computing An Artificial Neural Network based anomaly detection mechanism having an audit system to secure the cloud from  ... 
dblp:journals/ijcnis/IyengarBG14 fatcat:yt4loseyinasna4bahf7deceqy

High-performance, platform-independent DDoS detection for IoT ecosystems

Alejandro Santoyo-Gonzalez, Cristina Cervello-Pastor, Dimitrios P. Pezaros
2019 2019 IEEE 44th Conference on Local Computer Networks (LCN)  
In this paper, we present an edge-based detection scheme using BPFabric, a high-speed, programmable data-plane switch architecture, and lightweight network functions to execute upstream anomaly detection  ...  Most Distributed Denial of Service (DDoS) detection and mitigation strategies for Internet of Things (IoT) are based on a remote cloud server or purpose-built middlebox executing complex intrusion detection  ...  So far, solutions against DDoS attacks in this context have been implemented through complex, centralized software and hardware-based mechanisms [4] .  ... 
doi:10.1109/lcn44214.2019.8990862 dblp:conf/lcn/Santoyo-Gonzalez19 fatcat:4pdvs67fajc2dihudorzvdrob4

Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN : An Experimental Approach

Jesús Galeano-Brajones, Javier Carmona-Murillo, Juan F. Valenzuela-Valdés, Luna-Valero
2020 Sensors  
In this work, we propose to experimentally evaluate an entropy-based solution to detect and mitigate DoS and DDoS attacks in IoT scenarios using a stateful SDN data plane.  ...  To this end, Software Defined Networking (SDN) is a promising paradigm that serves as a pillar in the fifth generation of mobile systems (5G) that could help to detect and mitigate Denial of Service (DoS  ...  Then, the entropy H is defined as H = − n ∑ i=1 p i log 2 p i . (1) The next section describes in detail the solution developed in an SDN network to detect (D)DoS attacks through a mechanism based on the  ... 
doi:10.3390/s20030816 pmid:32028711 pmcid:PMC7038683 fatcat:6e6f4tqgdvcrnc6bx73ygcisyy

Efficient Detection of Ddos Attacks by Entropy Variation

V.Sushma Reddy
2012 IOSR Journal of Computer Engineering  
Distributed Denial-of-Service (DDoS) attacks are a critical threat to the Internet. It is extremely hard to trace back the attackers because of memory less feature of the internet routing mechanisms.  ...  We propose a novel trace back method for DDoS attacks that is based on entropy variations between normal and DDoS attack traffic, which is fundamentally different from commonly used packet marking techniques  ...  Conclusion I proposed an effective and efficient IP Traceback scheme against DDOS attacks based on entropy variations.  ... 
doi:10.9790/0661-0711318 fatcat:zyk4p47qqnc7lkcn5kbvlpr2e4

Grid High Availability and Service Security Issues with Solutions

Muhammad Zakarya, Muazzam Ali Khattak, Izaz Ur Rahman, Ayaz Ali Khan
2012 International Journal of Engineering and Technology  
In this paper we are going to present a new Cloud Environment and Architecture and an Entropy based Anomaly Detection System (ADS) approach to mitigate the DDoS attack which further improves network performance  ...  Recent attacks on the clouds especially Distributed Denial of Service (DDoS) poses as a potential intimidation and danger to this key technology of the expectations and future.  ...  Distributed Change point Detection (DCD) In [6] the authors have proposed a new detection mechanism for DDoS. A CAT is constructed.  ... 
doi:10.7763/ijet.2012.v4.472 fatcat:lzvhw32uojbvhdr6lupwqtt3ly

Vulnerability Analysis of Existing Distributed Denial of Service (DDoS) Defense Frameworks

Shaveta Gupta, Dinesh Grover, Abhinav Bhandari
2018 Asian Journal of Computer Science and Technology  
This analysis will help to define a framework which can provide better accuracy, lesser detection time and reduced false negative and positive rates.  ...  There are various types of cyber-attacks but most common and equally impactful is DDOS attack. A foolproof defense mechanism is need of the hour.  ...  [8] Packets based entropy approach has been used to detect flooding-based DDoS.  ... 
doi:10.51983/ajcst-2018.7.3.1895 fatcat:7hxowrizavcvrotckqx47a2h4a

SDN-Honeypot Integration for DDoS Detection Scheme Using Entropy

Irmawati Feren Kilwalaga, Fauzi Dwi Setiawan Sumadi, Syaifuddin Syaifuddin
2020 Kinetik  
Limitations on traditional networks contributed to the development of a new paradigm called Software Defined Network (SDN).  ...  The results show that detection and mitigation were successfully carried out with an average value of entropy around 10.830.  ...  Acknowledgement The authors would like to express profound gratitude for Informatics Laboratory in Universitas Muhammadiyah Malang which provides a direct support for this research.  ... 
doi:10.22219/kinetik.v5i3.1058 fatcat:y2ewlbeknnahzimqrs7plnpk2y

DDoS Attack Detection using Predictive Models

Sultan Alshehri
2019 International Journal of Computer Applications  
Distributed Denial of Service attack (DDoS) is a crucial issue to those in the security field.  ...  It is based on sending many malicious packets to the targeting service, causing failure of normal network services. There are a lot of defense systems developed to overcome this kind of attack.  ...  Niyaz Quamar, et al [5] , proposed deep learning based multivector DDoS detection system in a software-defined network (SDN) environment.  ... 
doi:10.5120/ijca2019918900 fatcat:kfdnetmq5nctbfkhjfompknc7i
« Previous Showing results 1 — 15 out of 1,245 results