Visible to the public Biblio

Filters: Author is Song, B.  [Clear All Filters]
2018-11-19
Huang, X., Du, X., Song, B..  2017.  An Effective DDoS Defense Scheme for SDN. 2017 IEEE International Conference on Communications (ICC). :1–6.

In this paper, we propose a scheme to protect the Software Defined Network(SDN) controller from Distributed Denial-of-Service(DDoS) attacks. We first predict the amount of new requests for each openflow switch periodically based on Taylor series, and the requests will then be directed to the security gateway if the prediction value is beyond the threshold. The requests that caused the dramatic decrease of entropy will be filtered out and rules will be made in security gateway by our algorithm; the rules of these requests will be sent to the controller. The controller will send the rules to each switch to make them direct the flows matching with the rules to the honey pot. The simulation shows the averages of both false positive and false negative are less than 2%.