“…OpenFlow represents a vendor-independent interface which translates the high-level orders sent by the controllers to low-level behaviors that can be understood by the switches, that handles the L2-L4 network flows. However, OpenFlow has to be extended in order to handle the L5-L7 flows [1]. The control plane provides a global view of the network that provides help in achieving more enhanced control mechanism for the forwarding plane.…”
Software-Defined Networking (SDN) is an emerging networking paradigm that provides an advanced programming capability and moves the control functionality to a centralized controller. This paper proposes a two-stage novel intelligent approach that takes advantage of the SDN approach to detect Denial of Service (DoS) flooding attacks based on calculation of packet rate as the first step and followed by Support Vector Machine (SVM) classification as the second step. Flow concept is an essential idea in OpenFlow protocol, which represents a common interface between an SDN switch and an SDN controller. Therefore, our system calculates the packet rate of each flow based on flow statistics obtained by SDN controller. Once the packet rate exceeds a predefined threshold, the system will activate the packet inspection unit, which, in turn, will use the (SVM) algorithm to classify the previously collected packets. The experimental results showed that our system was able to detect DoS flooding attacks with 96.25% accuracy and 0.26% false alarm rate.
“…OpenFlow represents a vendor-independent interface which translates the high-level orders sent by the controllers to low-level behaviors that can be understood by the switches, that handles the L2-L4 network flows. However, OpenFlow has to be extended in order to handle the L5-L7 flows [1]. The control plane provides a global view of the network that provides help in achieving more enhanced control mechanism for the forwarding plane.…”
Software-Defined Networking (SDN) is an emerging networking paradigm that provides an advanced programming capability and moves the control functionality to a centralized controller. This paper proposes a two-stage novel intelligent approach that takes advantage of the SDN approach to detect Denial of Service (DoS) flooding attacks based on calculation of packet rate as the first step and followed by Support Vector Machine (SVM) classification as the second step. Flow concept is an essential idea in OpenFlow protocol, which represents a common interface between an SDN switch and an SDN controller. Therefore, our system calculates the packet rate of each flow based on flow statistics obtained by SDN controller. Once the packet rate exceeds a predefined threshold, the system will activate the packet inspection unit, which, in turn, will use the (SVM) algorithm to classify the previously collected packets. The experimental results showed that our system was able to detect DoS flooding attacks with 96.25% accuracy and 0.26% false alarm rate.
“…On way to illustrate the benefits of our system is to compare it with the latest traditional Evolved Packet Core cellular network [38]. In the traditional Evolved Packet Core networks, all data traffic flow through the Evolved Packet Core network including the Packet data Gateway (PGW) and the Serving Gateway (SGW).…”
Abstract:One of the main design aspects of the Tactile Internet system is the 1 ms end-to-end latency, which is considered as being the main challenge with the system realization. Forced by recent development and capabilities of the fifth generation (5G) cellular system, the Tactile Internet will become a real. One way to overcome the 1 ms latency is to employ a centralized controller in the core of the network with a global knowledge of the system, together with the concept of network function virtualization (NFV). This is the idea behind the software defined networking (SDN). This paper introduces a Tactile Internet system structure, which employs SDN in the core of the cellular network and mobile edge computing (MEC) in multi-levels. The work is mainly concerned with the structure of the core network. The system is simulated over a reliable environment and introduces a round trip latency of orders of 1 ms. This can be interpreted by the reduction of intermediate nodes that are involved in the communication process.
“…Some work exists concerning attempts to virtualize network functions in both core networks-the work in [4] analyzes the functions of S-GW and P-GW EPC nodes and classifies them according to data plane and control plane, and access network-whereas the authors in [5] proposes virtualizing LTE network functions. Also, this work [6] presents a virtualized routing function over an OpenFlow network.…”
Section: Impact Of Softwarisation In 5g Contextmentioning
Abstract-The meaning of 5G is still a subject of discussion in the industry. However, the softwarization of networks is expected to shape the design, operation and management of 5G networks. The opportunity is then crucial for Telcos, vendors and IT players to consider the management of 5G networks during its design time and avoid the "build it first, manage it later" paradigm. However, network softwarization comes with its own set of challenges, including robustness, scalability and resilience. In this paper, we analyze the vulnerabilities of SDN (Software-Defined Networks) and NFV (Network Function Virtualization) from a fault management perspective, while taking into account the autonomic principles. In particular, we focus on resiliency and we propose a Self-Healing based framework for 5G networks to ensure services and resources availability.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.