DETECTION AND MITIGATION OF DISTRIBUTED DENIAL OF SERVICE ATTACKS ON NETWORK ARCHITECTURE  SOFTWARE DEFINED NETWORKING USING THE NAIVE BAYES ALGORITHM

Misbachul Munir; Ipung Ardiansyah; Joko Dwi Santoso; Ali Mustopa; Sri Mulyatun

doi:10.24076/joism.2022v3i2.656

Authors

Misbachul Munir Universitas Amikom Yogyakarta
Ipung Ardiansyah Universitas Amikom Yogyakarta
Joko Dwi Santoso Universitas Amikom Yogyakarta
Ali Mustopa Universitas Amikom Yogyakarta
Sri Mulyatun Universitas Amikom Yogyakarta

DOI:

https://doi.org/10.24076/joism.2022v3i2.656

Keywords:

Software-Defined Networking, Naïve Bayes Algorithm, Flow Control, DDoS

Abstract

DDoS attacks are a form of attack carried out by sending packets continuously to machines and even computer networks. This attack will result in a machine or network resources that cannot be accessed or used by users. DDoS attacks usually originate from several machines operated by users or by bots, whereas Dos attacks are carried out by one person or one system. In this study, the term to be used is the term DDoS to represent a DoS or DDoS attack. In the network world, Software Defined Network (SDN) is a promising paradigm. SDN separates the control plane from forwarding plane to improve network programmability and network management. As part of the network, SDN is not spared from DDoS attacks. In this study, we use the naïve Bayes algorithm as a method to detect DDoS attacks on the Software Defined Network network architecture

Downloads

Download data is not yet available.

References

N. I. G. Dharma, M. F. Muthohar, J. D. A. Prayuda, K. Priagung, and D. Choi, “Time-based DDoS detection and mitigation for SDN controller,” 17th Asia-Pacific Netw. Oper. Manag. Symp. Manag. a Very Connect. World, APNOMS 2015, pp. 550–553, 2015.

V. Deepa, K. M. Sudar, and P. Deepalakshmi, “Detection of DDoS Attack on SDN Control plane using Hybrid Machine Learning Techniques,” 2018 Int. Conf. Smart Syst. Inven. Technol., no. Icssit, pp. 299–303, 2019.

R. Nagai, W. Kurihara, S. Higuchi, and T. Hirotsu, “Design and Implementation of an OpenFlow-Based TCP SYN Flood Mitigation,” Proc. - 6th IEEE Int. Conf. Mob. Cloud Comput. Serv. Eng. MobileCloud 2018, vol. 2018-Janua, pp. 37–42, 2018.

R. Vedhapriyavadhana, E. Francy Irudaya Rani, and M. Theepa, “Simulation and performance analysis of Security issue Using Floodlight controller in Software Defined Network,” 2018 Int. Conf. Emerg. Trends Innov. Eng. Technol. Res. ICETIETR 2018, pp. 1–6, 2018.

B. H. Lawal and A. T. Nuray, “Real-time detection and mitigation of distributed denial of service (DDoS) attacks in software defined networking (SDN),” 26th IEEE Signal Process. Commun. Appl. Conf. SIU 2018, pp. 1–4, 2018.

X. You, Y. Feng, and K. Sakurai, “Packet in Message Based DDoS Attack Detection in SDN Network Using OpenFlow,” Proc. - 2017 5th Int. Symp. Comput. Networking, CANDAR 2017, vol. 2018- Janua, pp. 522–528, 2018.

B. Mladenov, “Studying the DDoS Attack Effect over SDN Controller Southbound Channel,” 10th Natl. Conf. with Int. Particip. Electron. 2019 - Proc., pp. 1–4, 2019.

R. M. Thomas and D. James, “DDOS detection and denial using third party application in SDN,” 2017 Int. Conf. Energy, Commun. Data Anal. Soft Comput. ICECDS 2017, pp. 3892–3897, 2018.

E. Haleplidis, J. H. Salim, and D. Meyer, “‘Software-Defined Networking (SDN): Layers and Architecture Terminology’, RFC 7426, DOI 10.17487/RFC7426,” no. June 2016, pp. 1–35, 2015.

N. Z. Bawany, J. A. Shamsi, and K. Salah, “DDoS Attack Detection and Mitigation Using SDN: Methods, Practices, and Solutions,” Arab. J. Sci. Eng., vol. 42, no. 2, pp. 425–441, 2017.

K. Hong, Y. Kim, H. Choi, and J. Park, “SDN-Assisted Slow HTTP DDoS Attack Defense Method,” IEEE Commun. Lett., vol. 22, no. 4, pp. 688–691, 2018.

V. Kansal and M. Dave, “Proactive DDoS attack detection and isolation,” 2017 Int. Conf. Comput. Commun. Electron. COMPTELIX 2017, pp. 334–338, 2017.

M. Ammar, M. Rizk, A. Abdel-Hamid, and A. K. Aboul-Seoud, “A framework for security enhancement in SDN-based datacenters,” 2016 8th IFIP Int. Conf. New Technol. Mobil. Secur. NTMS 2016, pp. 3–6, 2016.

S. Sivabalan and P. J. Radcliffe, “A novel framework to detect and block DDoS attack at the application layer,” IEEE 2013 Tencon - Spring, TENCONSpring 2013 - Conf. Proc., pp. 578–582, 2013.