{"title":"Entropy-based DDoS Attack Detection in SDN using Dynamic Threshold","authors":"Zahra Hemmati, G. Mirjalily, Zahra Mohtajollah","doi":"10.1109/ICSPIS54653.2021.9729355","DOIUrl":null,"url":null,"abstract":"The centralized structure of software defined networks makes them vulnerable to distributed denial of service attacks. Given that these attacks can easily destroy the computational and communicational resources of controller and switches, they make the network fail in a short time. Hence, it is vital to protect the controller. Utilizing the unique features of software defined networks, this paper propounds an effective method to detect distributed denial of services attacks. For this purpose, entropy was used to detect attacks. Furthermore, this method utilizes a dynamic threshold instead of a static one to distinguish between normal and attack traffic. The dynamic threshold heightens the accuracy of attack detection in the proposed algorithm to 98% on average while the accuracy in the benchmark algorithm using entropy and the static threshold is 96%.","PeriodicalId":286966,"journal":{"name":"2021 7th International Conference on Signal Processing and Intelligent Systems (ICSPIS)","volume":"147 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-12-29","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 7th International Conference on Signal Processing and Intelligent Systems (ICSPIS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSPIS54653.2021.9729355","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1
Abstract
The centralized structure of software defined networks makes them vulnerable to distributed denial of service attacks. Given that these attacks can easily destroy the computational and communicational resources of controller and switches, they make the network fail in a short time. Hence, it is vital to protect the controller. Utilizing the unique features of software defined networks, this paper propounds an effective method to detect distributed denial of services attacks. For this purpose, entropy was used to detect attacks. Furthermore, this method utilizes a dynamic threshold instead of a static one to distinguish between normal and attack traffic. The dynamic threshold heightens the accuracy of attack detection in the proposed algorithm to 98% on average while the accuracy in the benchmark algorithm using entropy and the static threshold is 96%.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
