Visible to the public Towards Autonomic Entropy Based Approach for DDoS Attack Detection and Mitigation Using Software Defined Networking

TitleTowards Autonomic Entropy Based Approach for DDoS Attack Detection and Mitigation Using Software Defined Networking
Publication TypeConference Paper
Year of Publication2021
AuthorsUddin Nadim, Taef, Foysal
Conference Name2021 International Conference on Automation, Control and Mechatronics for Industry 4.0 (ACMI)
Date Publishedjul
KeywordsAutonomic Security, cloud servers, composability, Computer architecture, control plane, data plane, DDoS Attack, denial-of-service attack, Entropy, Law, Linux, Mechatronics, pubcrawl, resilience, Resiliency, SDN, Servers, traffic
AbstractSoftware defined networking (SDN) architecture frame- work eases the work of the network administrators by separating the data plane from the control plane. This provides a programmable interface for applications development related to security and management. The centralized logical controller provides more control over the total network, which has complete network visibility. These SDN advantages expose the network to vulnerabilities and the impact of the attacks is much severe when compared to traditional networks, where the network devices have protection from the attacks and limits the occurrence of attacks. In this paper, we proposed an entropy based algorithm in SDN to detect as well as stopping distributed denial of service (DDoS) attacks on the servers or clouds or hosts. Firstly, there explored various attacks that can be launched on SDN at different layers. Basically DDoS is one kind of denial of service attack in which an attacker uses multiple distributed sources for attacking a particular server. Every network in a system has an entropy and an increase in the randomness of probability causes entropy to decrease. In comparison with previous entropy based approaches this approach has higher performance in distinguishing legal and illegal traffics and blocking illegal traffic paths. Linux OS and Mininet Simulator along with POX controller are used to validate the proposed approach. By conducting pervasive simulation along with theoretical analysis this method can definitely detect and stop DDoS attacks automatically.
DOI10.1109/ACMI53878.2021.9528288
Citation Keyuddin_nadim_towards_2021