Abstract
Software Defined Network (SDN) brings a new concept in terms of network architecture. Despite its benefits, SDN architecture also presents new security challenges, in particular, those related to Distributed Denial of Service (DDoS) attacks. Many current approaches have used statistical techniques, such as entropy, or Machine Learning (ML) to detect these attacks. However, there is an important trade-off between these approaches. The definition of a threshold that determine whether particular traffic is spurious or not is not trivial in statistical techniques. ML solutions may provide better accuracy as compared to statistical techniques, but require considerable computational resources and time to converge. Current hybrid approaches try to balance between these two approaches by either using the results from entropy as input in ML algorithms (Entropy → ML) or using entropy as a filter and ML algorithms to identify attacks. By combining these techniques, this paper presents a 3-step solution (Entropy → ML→ Entropy) called ML-Entropy which inherits the intelligence of ML algorithms to dynamically adjust the threshold used by entropy, improving the separation of legitimate from spurious traffic with reduced error rates. The solution was implemented and evaluated in a real-corporate environment. The experimental results show that the attack detection accuracy of ML-Entropy surpasses 99%, providing superior results as compared to entropy and its combination with ML algorithms.
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.