Abstract
Software-Defined Networking (SDN) is an emerging network architecture that addresses the limitation of the traditional network by providing centralized management through a central controller that decouples the control and data planes. However, this development has made the controller a severe target for malicious users to execute attacks such as Distributed Denial of Service (DDoS) attacks. Several schemes have been proposed to mitigate DDoS attacks in SDN, but the challenges still exist. This paper proposes a DDoS mitigation scheme for SDN to ensure accurate attack detection and efficient network resource utilization. The scheme employs two stages: a bandwidth control mechanism and Extreme Gradient Boosting (XGBoost) Algorithm. The bandwidth control mechanism utilizes an adaptive bandwidth profile-based threshold and bandwidth control algorithm that trigger the XGBoost algorithm in case of threshold violations. The use of multiple bandwidth profiles in stetting the threshold ensures the threshold's adaptivity to consider the network traffic variation and reduce the packets drop ratio, which shows an outstanding result. The XGBoost algorithm classifies network traffic flow that violates a set threshold into normal or abnormal traffic. We evaluated the performance of our scheme using CICDDoS2019, NSL-KDD, and CAIDA datasets. Furthermore, we validated our proposed solution in real-time with the SDN environment. The results obtained show that our scheme protects SDN against DDoS attacks with high accuracy, low error, and efficient utilization of the network resources. The proposed system achieved 99.9% accuracy in detecting DDoS attacks with a low false-positive rate of 0.0002% in SDN.
Highlights
The tremendous increase in network applications and connected devices on the internet has resulted in high network complexity in terms of management, configuration, and scalability [1]
We propose a Distributed Denial of Service (DDoS) attack detection and mitigation system based on a bandwidth control mechanism and the extreme gradient boosting (XGBoost) algorithm to address the limitations of the aforementioned approaches
The category considered in this paper is the Denial of Service (DoS) records since the scope of this paper is to propose a DDoS mitigation scheme in Software-Defined Networking (SDN)
Summary
The tremendous increase in network applications and connected devices on the internet has resulted in high network complexity in terms of management, configuration, and scalability [1]. Software-defined networking (SDN) addresses the limitations of conventional networks by providing features such as programmability, logically centralized control, and simplified management [3]. SDN is an emerging network architecture that decouples the network control plane from the data (forwarding) plane [4]. The control plane is centralized as a software control logic implemented in a controller, while the forwarding plane remains on the forwarding devices for forwarding traffic [5]. SDN uses the logical centralization of the controller to preserve a network-wide view to perform the forwarding decision, policy enforcement, and management [6]
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
