| Title | Entropy Based DDoS Detection and Mitigation in OpenFlow Enabled SDN |
| Publication Type | Conference Paper |
| Year of Publication | 2019 |
| Authors | Ahalawat, Anchal, Dash, Shashank Sekhar, Panda, Abinas, Babu, Korra Sathya |
| Conference Name | 2019 International Conference on Vision Towards Emerging Trends in Communication and Networking (ViTECoN) |
| Date Published | mar |
| Keywords | attack volume, Bandwidth, centralized controller, composability, Computer crime, computer network security, data plane, DDoS, DDoS attack mitigation, DDoS Attacks, DDoS detection, denial-of-service attack, efficient service delivery, Entropy, Human Behavior, Internet, IP networks, Meters, Metrics, network resources, network safe, network security threat, networking infrastructure, OpenFlow, OpenFlow enabled SDN, OpenFlow protocol, Protocols, pubcrawl, Resiliency, SDN, software defined networking, Switches, UDP flooding, user datagram protocol |
| Abstract | Distributed Denial of Service(DDoS) attacks have become most important network security threat as the number of devices are connected to internet increases exponentially and reaching an attack volume approximately very high compared to other attacks. To make the network safe and flexible a new networking infrastructure such as Software Defined Networking (SDN) has come into effect, which relies on centralized controller and decoupling of control and data plane. However due to it's centralized controller it is prone to DDoS attacks, as it makes the decision of forwarding of packets based on rules installed in switch by OpenFlow protocol. Out of all different DDoS attacks, UDP (User Datagram Protocol) flooding constitute the most in recent years. In this paper, we have proposed an entropy based DDoS detection and rate limiting based mitigation for efficient service delivery. We have evaluated using Mininet as emulator and Ryu as controller by taking switch as OpenVswitch and obtained better result in terms of bandwidth utilization and hit ratio which consume network resources to make denial of service. |
| DOI | 10.1109/ViTECoN.2019.8899721 |
| Citation Key | ahalawat_entropy_2019 |
Entropy Based DDoS Detection and Mitigation in OpenFlow Enabled SDN