Abstract
The Internet of things (IoT) introduces emerging applications (i.e., smart homes, smart cities, smart health, and smart gird) that assist the traditional infrastructure environments to be connected with smart objects. Things are connected with the Internet and numerous new IoT devices are developing at a rapid pace. As these smart objects are connected and able to communicate with each other in unprotected environments; therefore, the whole communication ecosystem requires security solutions at different levels. IoT technology possesses unique characteristics with various resource constraints and heterogeneous network protocol requirements, unlike traditional networks. The attacker exploits numerous security vulnerabilities of an IoT infrastructure, to generate a DDoS attack. The increase in DDoS attacks has made it important to address the consequences which imply in the IoT industry. This research proposes an SD-IoT based framework that provides security services to the IoT network. We developed a C-DAD (Counter-based DDoS Attack Detection) application that is based on counter values of different network parameters, which helps to detect DDoS attack successfully. C-DAD is a dynamic and programmable solution, and is deeply tested with different network parameters. The algorithm demonstrates a good performance with better results through SDN. Moreover, the proposed framework detects the attack efficiently in a minimum amount of time and with lesser consumption of CPU and memory resources.
Highlights
Internet of things (IoT) technology has exponentially increased the number of heterogeneous devices linked with the Internet
The experiments are conducted with a bandwidth-based threshold, in which the SDNWISE controller runs the Counter-based DDoS Attack Detection (C-DAD) algorithm when the SD-IoT network bandwidth reached at 0.5 KBytes (Experiment 2) or 1 Kbytes/sec (Experiment 3)
In this paper, we presented a novel C-DAD (Counter-based DDoS Attack Detection) framework built on top of the SDNWISE framework, to analyze and detect the DDoS attack with an affordable time
Summary
IoT technology has exponentially increased the number of heterogeneous devices linked with the Internet. According to [1], as of usage, the number of IoT devices will reach a quantity of 24 billion by the end of this year, and IoT will exceed to 100 billion connected devices by the end of 2025 [2] These devices spread in an open network environment, which is easy to attract any attacker. According to a research [3], 200 million IoT devices connect to the Internet and are associated with the web, so it offers an opportunity for the attackers to utilize these devices for DoS, DDoS, Trojan, and e-mail pernicious. Another issue with IoT devices is lack of computation and communication, as compared to traditional computing devices. The application layer consists of IoT security services, which users and administrators use to control the SD-IoT environment
Sign-in/Register to view highlights & summary 
Published Version (
Free)
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call