FL-GUARD: A Detection and Defense System for DDoS Attack in SDN
| Title | FL-GUARD: A Detection and Defense System for DDoS Attack in SDN |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Liu, Jing, Lai, Yingxu, Zhang, Shixuan |
| Conference Name | Proceedings of the 2017 International Conference on Cryptography, Security and Privacy |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-4867-6 |
| Keywords | composability, DDoS Attack Prevention, Detection and Defense, distributed denial of service, Human Behavior, Metrics, pubcrawl, Resiliency, Software Defined Network |
| Abstract | This paper proposed a new detection and prevention system against DDoS (Distributed Denial of Service) attack in SDN (software defined network) architecture, FL-GUARD (Floodlight-based guard system). Based on characteristics of SDN and centralized control, etc., FL-GUARD applies dynamic IP address binding to solve the problem of IP spoofing, and uses 3.3.2 C-SVM algorithm to detect attacks, and finally take advantage of the centralized control of software-defined network to issue flow tables to block attacks at the source port. The experiment results show the effectiveness of our system. The modular design of FL-GUARD lays a good foundation for the future improvement. |
| URL | http://doi.acm.org/10.1145/3058060.3058074 |
| DOI | 10.1145/3058060.3058074 |
| Citation Key | liu_fl-guard:_2017 |