Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network
This paper presents a collaborative technique to detect and mitigate Distributed Denial-of-Service (DDoS) flooding attacks on Software-Defined Network (SDN). This technique integrates sflow-RT application and Snort rules for the detection of DDoS traffic flows in an SDN controller. Redis Simple Mess...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Published: |
Springer
2020
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/id/eprint/87230/ http://dx.doi.org/10.1007/s11036-020-01552-0 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| id |
my.utm.87230 |
|---|---|
| record_format |
eprints |
| spelling |
my.utm.872302020-10-31T12:26:56Z http://eprints.utm.my/id/eprint/87230/ Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network Tayfour, Omer Elsier Marsono, Muhammad Nadzir TK Electrical engineering. Electronics Nuclear engineering This paper presents a collaborative technique to detect and mitigate Distributed Denial-of-Service (DDoS) flooding attacks on Software-Defined Network (SDN). This technique integrates sflow-RT application and Snort rules for the detection of DDoS traffic flows in an SDN controller. Redis Simple Message Queue (RSMQ) acts as a mechanism to share DDoS detection and mitigation rules among multiple Ryus SDN controllers. The rule-sharing allows a reduction of the controller’s overhead for processing DDoS detection and mitigation. The experimental results show that using the RSMQ mechanism can significantly detect and prevent DDoS attacks detection across multi-controller domains. It also provides early detection and mitigation of DDoS at lower controller overhead. Springer 2020 Article PeerReviewed Tayfour, Omer Elsier and Marsono, Muhammad Nadzir (2020) Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network. Mobile Networks and Applications, 25 (4). pp. 1338-1347. ISSN 1383-469X http://dx.doi.org/10.1007/s11036-020-01552-0 |
| institution |
Universiti Teknologi Malaysia |
| building |
UTM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Teknologi Malaysia |
| content_source |
UTM Institutional Repository |
| url_provider |
http://eprints.utm.my/ |
| topic |
TK Electrical engineering. Electronics Nuclear engineering |
| spellingShingle |
TK Electrical engineering. Electronics Nuclear engineering Tayfour, Omer Elsier Marsono, Muhammad Nadzir Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network |
| description |
This paper presents a collaborative technique to detect and mitigate Distributed Denial-of-Service (DDoS) flooding attacks on Software-Defined Network (SDN). This technique integrates sflow-RT application and Snort rules for the detection of DDoS traffic flows in an SDN controller. Redis Simple Message Queue (RSMQ) acts as a mechanism to share DDoS detection and mitigation rules among multiple Ryus SDN controllers. The rule-sharing allows a reduction of the controller’s overhead for processing DDoS detection and mitigation. The experimental results show that using the RSMQ mechanism can significantly detect and prevent DDoS attacks detection across multi-controller domains. It also provides early detection and mitigation of DDoS at lower controller overhead. |
| format |
Article |
| author |
Tayfour, Omer Elsier Marsono, Muhammad Nadzir |
| author_facet |
Tayfour, Omer Elsier Marsono, Muhammad Nadzir |
| author_sort |
Tayfour, Omer Elsier |
| title |
Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network |
| title_short |
Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network |
| title_full |
Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network |
| title_fullStr |
Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network |
| title_full_unstemmed |
Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network |
| title_sort |
collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network |
| publisher |
Springer |
| publishDate |
2020 |
| url |
http://eprints.utm.my/id/eprint/87230/ http://dx.doi.org/10.1007/s11036-020-01552-0 |
| _version_ |
1683230711937499136 |
| score |
13.18916 |