Detection and Classification of DDoS Flooding Attacks on Software-Defined Networks: A Case Study for the Application of Machine Learning

Sangodoyin, A. Y.; Akinsolu, Mobayode O.; Pillai, Prashant; Grout, Vic

doi:10.1109/access.2021.3109490

Cited by 42 publications

(15 citation statements)

References 71 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These findings reveal the significant impact of using the FS (based on GWO) on enhancing the IDS performance significantly. Besides, the performance of the proposed IDS was also compared against that of advanced counterparts mentioned in the literature including [11][12][13][14][15] to identify its efficiency. Although the IDSs attained comparable outcomes following accuracy, precision, recall, and F-measure, the proposed IDS outperformed the current IDSs in all evaluation metric as outlined in Fig.…”

Section: Results and Findingsmentioning

confidence: 99%

“…Such techniques are extensively deployed in traditional networks and ML-assisted SDNs. For example, ML-based IDS of DDoS flooding attacks on SDNs was presented in [11]. The common principle is depicted using a case study where experimental data (jitter, throughput, and response time metrics) from a representative SDN environment, which proves adequate for typical mid-sized and enterprise-wide networks, is employed to structure classification models that precisely determine and categorize DDoS flooding attacks.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Probe Attack Detection Using an Improved Intrusion Detection System

Almazyad¹,

Halman²,

Alsaeed³

2023

Computers, Materials &Amp; Continua

View full text Add to dashboard Cite

The novel Software Defined Networking (SDN) architecture potentially resolves specific challenges arising from rapid internet growth of and the static nature of conventional networks to manage organizational business requirements with distinctive features. Nevertheless, such benefits lead to a more adverse environment entailing network breakdown, systems paralysis, and online banking fraudulence and robbery. As one of the most common and dangerous threats in SDN, probe attack occurs when the attacker scans SDN devices to collect the necessary knowledge on system susceptibilities, which is then manipulated to undermine the entire system. Precision, high performance, and real-time systems prove pivotal in successful goal attainment through feature selection to minimize computation time, optimize prediction performance, and provide a holistic understanding of machine learning data. As the extension of astute machine learning algorithms into an Intrusion Detection System (IDS) through SDN has garnered much scholarly attention within the past decade, this study recommended an effective IDS under the Grey-wolf optimizer (GWO) and Light Gradient Boosting Machine (Light-GBM) classifier for probe attack identification. The InSDN dataset was employed to train and test the proposed IDS, which is deemed to be a novel benchmarking dataset in SDN. The proposed IDS assessment demonstrated an optimized performance against that of peer IDSs in probe attack detection within SDN. The results revealed that the proposed IDS outperforms the state-of-the-art IDSs, as it achieved 99.8% accuracy, 99.7% recall, 99.99% precision, and 99.8% F-measure.

show abstract

Section: Results and Findingsmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Probe Attack Detection Using an Improved Intrusion Detection System

Almazyad¹,

Halman²,

Alsaeed³

2023

Computers, Materials &Amp; Continua

View full text Add to dashboard Cite

show abstract

“…At the same time, there is massive HTTP Flooding, which targets many people 58 . Sangodoyin et al 59 proposed a Software Defined Network on tree topology using Mininet emulator so that it can be used in wide area networks. This machine learning‐based method gave good accuracy in detecting HTTP Flooding attacks.…”

Section: Taxonomy Of Iot Security Attacksmentioning

confidence: 99%

Safeguarding the IoT: Taxonomy, security solutions, and future research opportunities

Patel,

Kakkar

et al. 2023

Security and Privacy

View full text Add to dashboard Cite

With the advancement of innovative technologies, the Internet of Things (IoT) has become quite popular in various applications such as smart homes, smart cities, agriculture, healthcare, and so forth. However, the heterogeneity of IoT protocols can pose security challenges to wireless networks. Thus, we have presented a systematic review of IoT technologies such as ZigBee, Radio Frequency Identification (RFID), Bluetooth, WiFi, Ethernet, AR, embedded subscriber identification modules (E‐SIM), and smart sensors, along with their communication protocols, which are part of the IoT‐layered architecture. We have bifurcated the IoT‐layered architecture into the perception, network, and application layers. Furthermore, we have presented IoT security attacks associated with the perception, network, and application layers of the IoT‐layered architecture. Moreover, we have discussed several IoT security solutions, open issues, and research challenges dedicated to the security of IoT networks. IoT security solutions can provide secure and efficient data communication over wireless networks.

show abstract

“…Even though such mobile or ubiquitous HMIs will adequately support the quasi or full decentralisation of the control architectures of their associated ICs, as discussed above, they also make their ICSs prone to cyber attacks or threats due to their dedicated internet connectivity [35]. Several frameworks and/or methodologies such as the National Institute of Standards and Technology (NIST) framework [36,37] are available today to assess cyber attacks or threats such as denial of service [38] and devise the means of mitigating them in industrial applications, but cybersecurity has remained an area of ongoing research due to its very broad and dynamic nature in industrial applications [39].…”

Section: Related Workmentioning

confidence: 99%

Ubiquitous Control of a CNC Machine: Proof of Concept for Industrial IoT Applications

et al. 2021

Self Cite

View full text Add to dashboard Cite

In this paper, an integrated system to control and manage a state-of-the-art industrial computer numerical control (CNC) machine (Studer S33) using a commercially available tablet (Samsung Galaxy Tablet S2) is presented as a proof of concept (PoC) for the ubiquitous control of industrial machines. As a PoC, the proposed system provides useful insights to support the further development of full-fledged systems for Industrial Internet of Things (IIoT) applications. The proposed system allows for the quasi-decentralisation of the control architecture of conventional programmable logic controller (PLC)-based industrial control systems (ICSs) through data and information exchange over the transmission control protocol and the internet protocol (TCP/IP) suite using multiple agents. Based on the TCP/IP suite, a network device (Samsung Galaxy Tablet S2) and a process field net (PROFINET) device (Siemens Simatic S7-1200) are interfaced using a single-board computer (Raspberry Pi 4). An override system mainly comprising emergency stop and acknowledge buttons is also configured using the single-board computer. The input signals from the override system are transmitted to the PROFINET device (i.e., the industrial control unit (ICU)) over TCP/IP. A fully functional working prototype is realised as a PoC for an integrated system designated for the wireless and ubiquitous control of the CNC machine. The working prototype as an entity mainly comprises a mobile (handheld) touch-sensitive human-machine interface (HMI), a shielded single-board computer, and an override system, all fitted into a compact case with physical dimensions of 300 mm by 180 mm by 175 mm. To avert potential cyber attacks or threats to a reasonable extent and to guarantee the security of the PoC, a multi-factor authentication (MFA) including an administrative password and an IP address is implemented to control the access to the web-based ubiquitous HMI proffered by the PoC.

show abstract

Detection and Classification of DDoS Flooding Attacks on Software-Defined Networks: A Case Study for the Application of Machine Learning

Cited by 42 publications

References 71 publications

Probe Attack Detection Using an Improved Intrusion Detection System

Probe Attack Detection Using an Improved Intrusion Detection System

Safeguarding the IoT: Taxonomy, security solutions, and future research opportunities

Ubiquitous Control of a CNC Machine: Proof of Concept for Industrial IoT Applications

Contact Info

Product

Resources

About