Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network
This paper presents a collaborative technique to detect and mitigate Distributed Denial-of-Service (DDoS) flooding attacks on Software-Defined Network (SDN). This technique integrates sflow-RT application and Snort rules for the detection of DDoS traffic flows in an SDN controller. Redis Simple Mess...
Saved in:
Main Authors: | , |
---|---|
Format: | Article |
Published: |
Springer
2020
|
Subjects: | |
Online Access: | http://eprints.utm.my/id/eprint/87230/ http://dx.doi.org/10.1007/s11036-020-01552-0 |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
Summary: | This paper presents a collaborative technique to detect and mitigate Distributed Denial-of-Service (DDoS) flooding attacks on Software-Defined Network (SDN). This technique integrates sflow-RT application and Snort rules for the detection of DDoS traffic flows in an SDN controller. Redis Simple Message Queue (RSMQ) acts as a mechanism to share DDoS detection and mitigation rules among multiple Ryus SDN controllers. The rule-sharing allows a reduction of the controller’s overhead for processing DDoS detection and mitigation. The experimental results show that using the RSMQ mechanism can significantly detect and prevent DDoS attacks detection across multi-controller domains. It also provides early detection and mitigation of DDoS at lower controller overhead. |
---|