| Title | Detection and Mitigation of DDoS Attacks Using Conditional Entropy in Software-defined Networking |
| Publication Type | Conference Paper |
| Year of Publication | 2019 |
| Authors | Xuanyuan, Ming, Ramsurrun, Visham, Seeam, Amar |
| Conference Name | 2019 11th International Conference on Advanced Computing (ICoAC) |
| Keywords | basic packet forwarding equipment, centralised control, centralized control, centralized management unit, composability, computer network management, computer network security, conditional entropy, control logic, DDoS, DDoS attack detection, DDoS attack mitigation, DDoS detection, distributed denial of service attacks, Entropy, Human Behavior, lightweight approach, Metrics, mitigation, network resources, network revolution, pubcrawl, Resiliency, SDN, SDN security, software defined networking, software-defined networking, telecommunication control |
| Abstract | Software-defined networking (SDN) is a relatively new technology that promotes network revolution. The most distinct characteristic of SDN is the transformation of control logic from the basic packet forwarding equipment to a centralized management unit called controller. However, the centralized control of the network resources is like a double-edged sword, for it not only brings beneficial features but also introduces single point of failure if the controller is under distributed denial of service (DDoS) attacks. In this paper, we introduce a light-weight approach based on conditional entropy to improve the SDN security with an aim of defending DDoS at the early stage. The experimental results show that the proposed method has a high average detection rate of 99.372%. |
| DOI | 10.1109/ICoAC48765.2019.246818 |
| Citation Key | xuanyuan_detection_2019 |
Detection and Mitigation of DDoS Attacks Using Conditional Entropy in Software-defined Networking