International Journal of Applied Science and Engineering
Published by Chaoyang University of Technology

Neelam Gupta 1, Sarvesh Tanwar 1*, Sumit Badotra 2

1 Amity Institute of Information Technology, Amity University, Noida, 201301, India
2 School of Computer Science Engineering and Technology, Bennett University, Greater Noida, 201310, India

Download Citation: |
Download PDF


ABSTRACT

Software-defined networking (SDN) is a networking model that makes networks programmable, convenient, and agile. Its centralized control plane is a key component of DDoS, which causes system resources and prevents services from responding to legitimate requests. The SDN controller's centralized structure makes it extremely susceptible to DDoS attacks. DDoS attacks are quickly identified in SDN controllers, which is essential for preventing them. There are several suggested techniques for finding DDoS attacks, but not much research has been done. The first step in preventing DDoS attacks is to identify them. In this paper, sFlow is used to build an early DDoS detection tool with SDN controller integration for widely used SDN controllers (OpenDaylight and Ryu). Several network scenarios are taken into consideration for the experimental configuration, with Mininet and penetration tools used to create hosts and switches. Each situation involves a different quantity of hosts, switches, and packet forwarding. The number of hosts and switches used in each scenario varies, and the created packets of data range from 1,00,000 to 5,00,000 per second. The controllers are inundated with data traffic, and Wireshark is used to analyse the data traffic, and our DDoS detection system is evaluated based on a variety of criteria, including how long it takes to detect a DDoS assault, the round-trip time (RTT), the percentage of packet loss, and the type of DDoS attack. It has been discovered that ODL takes longer than Ryu to shut down after detecting a successful DDoS attack. Our technology makes sure quick DDoS attacks are promptly detected, improving the SDN controller's performance without compromising the network's overall operation.


Keywords: SDN, DDoS attacks, sFlow, Mininet, Wireshark, SDN controllers, Opendaylight and Ryu.


Share this article with your colleagues

 


REFERENCES

  1. Abdullah, A.F., Salem, F.M., Tammam, A., Azeem, M.H.A. 2020. Performance analysis and evaluation of software defined networking controllers against denial-of-service attacks. Journal of Physics: Conference Series, 1447, 012007.

  2. Abou E.H.Z., Khoukhi, L., Hafid, A.S. 2020. Bringing intelligence to software defined networks: Mitigating DDoS attacks. IEEE Transactions on Network and Service Management, 17, 2523–2535.

  3. Akbaripour, H., Houshmand, M., Fatahi Valilai, O. 2015. Cloud-based global supply chain: A conceptual model and multilayer architecture. Journal of Manufacturing Science and Engineering, 137(4), 040913.

  4. Ali, M.N., Imran, M., din, M.S.U., Kim, B.S. 2023. Low-rate DDoS detection using weighted federated learning in SDN control plane in IoT network. Applied Sciences, 13, 1431.

  5. Ali, T.E., Morad, A.H., Abdala, M.A. 2020. Traffic management inside software-defined data centre networking. Bulletin of Electrical Engineering and Informatics, 9, 2045–2054.

  6. Amiri, E., Alizadeh, E., Rezvani, M.H. 2020. Controller selection in software defined networks using best-worst multi-criteria decision-making. Bulletin of Electrical Engineering and Informatics, 9, 1506–1517.

  7. Anyanwu, G.O., Nwakanma, C.I., Lee, J.M., Kim, D.S. 2022. Optimization of RBF-SVM Kernel using grid search algorithm for DDoS attack detection in SDN-based VANET, IEEE Internet of Things Journal, 10(10), 8477–8490.

  8. Anyanwu, G.O., Nwakanma, C.I., Lee, J.M., Kim, D.S. 2023. RBF-SVM kernel-based model for detecting DDoS attacks in SDN integrated vehicular network. Ad Hoc Networks, 140, 103026.

  9. Aslam, M., Ye, D., Tariq, A., Asad, M., Hanif, M., Ndzi, D., Chelloug, S.A., Elaziz, M.A., Al-Qaness, M.A., Jilani, S. F. 2022. Adaptive machine learning based distributed denial-of-services attacks detection and mitigation system for SDN-enabled IoT. Sensors, 22, 2697.

  10. Badotra, S., Tanwar, S., Bharany, S., Rehman, A.U., Eldin, E.T., Ghamry, N.A., Shafiq, M. 2022. A DDoS vulnerability analysis system against distributed SDN controllers in a cloud computing environment. Electronics, 11, 3120.

  11. Badotra, S., Panda, S.N. 2020. Evaluation and comparison of Opendaylight and open networking operating system in software-defined networking. Cluster Computing, 23, 1281–1291.

  12. Badotra, S., Panda, S.N. 2021. SNORT based early DDoS detection system using Opendaylight and open networking operating system in software defined networking. Cluster Computing, 24, 501–513.

  13. Bawany, N.Z., Shamsi, J.A., Salah, K. 2017. DDoS attack detection and mitigation using SDN: methods, practices, and solutions. Arabian Journal for Science and Engineering, 42, 425–441.

  14. Batool, S., Khan, F.Z., Ali Shah, S.Q., Ahmed, M., Alroobaea, R., Baqasah, A.M., Ali, I., Ahsan Raza, M. 2022. Lightweight statistical approach towards TCP SYN flood DDoS attack detection and mitigation in SDN environment. Security and Communication Networks, 2022, 2593672.

  15. Cajas, C.D., Budanov, D.O. 2021. Mitigation of denial-of-service attacks using Opendaylight application in software-defined networking. 2021 IEEE Conference of Russian Young Researchers in Electrical and Electronic Engineering (ElConRus), 260–265.

  16. Cao, Y., Bian, Y. 2021. Improving the ecological environmental performance to achieve carbon neutrality: The application of DPSIR-improved matter-element extension cloud model. Journal of Environmental Management, 293, 112887.

  17. Carvalho, R.N., Costa, L.R., Bordim, J.L., Alchieri, E.A. 2021. Detecting DDoS attacks on SDN data plane with machine learning. 2021 Ninth International Symposium on Computing and Networking Workshops (CANDARW), 138–144.

  18. Chaipet, S., Putthividhya, W. 2019. On studying of scalability in single-controller software-defined networks. 2019 11th International Conference on Knowledge and Smart Technology (KST), 158–163.

  19. Chauhan, N., Sood, M. 2019. Performance analysis of POX, open vswitch and open day light SDN controllers on cloud. International Journal of Innovative Technology and Exploring Engineering, 8, 332–339.

  20. Conti, M., Gangwal, A., Gaur, M.S. 2017. A comprehensive and effective mechanism for DDoS detection in SDN. 2017 IEEE 13th International Conference on Wireless and Mobile Computing, Networking and Communications (WiMob), 1–8.

  21. Dehkordi, A.B., Soltanaghaei, M., Boroujeni, F.Z. 2021. A hybrid mechanism to detect DDoS attacks in software defined networks. Majlesi Journal of Electrical Engineering, 15(1), 1–8.

  22. Dissanayake, M.B., Kumari, A.L.V., Udunuwara, U.K.A. 2021. Performance comparison of ONOS and ODL controllers in software defined networks under different network typologies. Journal of Research Technology & Engineering, 2(3), 94–105.

  23. Gadze, J.D., Bamfo-Asante, A.A., Agyemang, J.O., Nunoo-Mensah, H., Opare, K.A.B. 2021. An investigation into the application of deep learning in the detection and mitigation of DDoS attack on SDN controllers. Technologies, 9, 14.

  24. Ganesan, N., Thangaraju, B. 2022. Performance analysis of SDN controllers within an OpenStack infrastructure. 2022 IEEE India Council International Subsections Conference (INDISCON), 1–7.

  25. Gupta, N., Maashi, M.S., Tanwar, S., Badotra, S., Aljebreen, M., Bharany, S. 2022b. A comparative study of software defined networking controllers using mininet. Electronics, 11, 2715.

  26. Gupta, N., Tanwar, S., Badotra, S., Behal, S. 2022a. Performance analysis of SDN controller. International Journal of Performability Engineering, 18(8), 537–544.

  27. Gupta, V., Kochar, A., Saharan, S., Kulshrestha, R. 2019. DNS amplification based DDoS attacks in SDN environment: Detection and mitigation. 2019 IEEE 4th International Conference on Computer and Communication Systems (ICCCS), 473–478.

  28. Haider, S., Akhunzada, A., Mustafa, I., Patel, T.B., Fernandez, A., Choo, K.K.R., Iqbal, J. 2020. A deep CNN ensemble framework for efficient DDoS attack detection in software defined networks. IEEE Access, 8, 53972–53983.

  29. Hu, D., Hong, P., Chen, Y. 2017. FADM: DDoS flooding attack detection and mitigation system in software-defined networking. 2017 IEEE global communications conference, 1–7.

  30. Hyder, M.F., Fatima, T., Arshad, S. 2024. Towards adding digital forensics capabilities in software defined networking based moving target defense. Cluster Computing, 27, 893–912.

  31. Jia, K., Liu, C., Liu, Q., Wang, J., Liu, J., Liu, F. 2022. A lightweight DDoS detection scheme under SDN context. Cybersecurity, 5, 27.

  32. Jiang, S., Yang, L., Gao, X., Zhou, Y., Feng, T., Song, Y., Liu, K., Cheng, G. 2022. Bsd-guard: Acollaborative blockchain-based approach for detection and mitigation of SDN-targeted DDoS attacks. Security and Communication Networks, 2022, 1608689.

  33. Joëlle, M.M., Park, Y.H. 2018. Strategies for detecting and mitigating DDoS attacks in SDN: A survey. Journal of Intelligent & Fuzzy Systems, 35, 5913–5925.

  34. Jumani, A.K., Laghari, R.A. 2021. Review and state of art of fog computing. Archives of Computational Methods in Engineering, 1–13.

  35. Kumar, C., Kumar, B.P., Chaudhary, A., Gupta, A., Dev, K., Sharma, A., Srivastava, S., Rajitha, B. 2020. Intelligent DDoS detection system in software-defined networking (SDN). 2020 IEEE International Conference on Electronics, Computing and Communication Technologies (CONECCT), 1–6.

  36. Kumar, P., Baliyan, A., Prasad, K.R., Sreekanth, N., Jawarkar, P., Roy, V., Amoatey, E.T. 2022. Machine learning enabled techniques for protecting wireless sensor networks by estimating attack prevalence and device deployment strategy for 5G networks. Wireless Communications and Mobile Computing, 2022, 5713092.

  37. Kumar, P., Tripathi, M., Nehra, A., Conti, M., Lal, C. 2018. SAFETY: Early detection and mitigation of TCP SYN flood utilizing entropy in SDN. IEEE Transactions on Network and Service Management, 15, 1545–1559.

  38. Laghari, A.A., He, H., Khan, A., Laghari, R.A., Yin, S., Wan, J. 2022. Crowdsourcing platform for QoE evaluation for cloud multimedia services. Computer Science and Information Systems, 19, 1305–1328.

  39. Laghari, A.A., Zhang, X., Shaikh, Z.A., Khan, A., Estrela, V.V., Izadi, S. 2023. A review on quality of experience (QoE) in cloud computing. Journal of Reliable Intelligent Environments, 1–15.

  40. Latah, M., Toker, L. 2020. An efficient flow-based multi-level hybrid intrusion detection system for software-defined networks. CCF Transactions on Networking, 3, 261–271.

  41. Lawal, B.H., Nuray, A.T. 2018. Real-time detection and mitigation of distributed denial of service (DDoS) attacks in software defined networking (SDN). 2018 26th Signal Processing and Communications Applications Conference (SIU), 1–4.

  42. Lunagariya, D., Goswami, B. 2021. A comparative performance analysis of stellar SDN controllers using emulators. 2021 International Conference on Advances in Electrical, Computing, Communication and Sustainable Technologies (ICAECT), 1–9.

  43. Makuvaza, A., Jat, D.S., Gamundani, A.M. 2021. Deep neural network (DNN) solution for real-time detection of distributed denial of service (DDoS) attacks in software defined networks (SDNs). SN Computer Science, 2, 1–10.

  44. Mani, S., Nene, M.J. 2021. Preventing distributed denial of service attacks in software defined mesh networks. 2021 International Conference on Intelligent Technologies (CONIT), 1–7.

  45. Meti, N., Narayan, D.G., Baligar, V.P. 2017. Detection of distributed denial of service attacks using machine learning algorithms in software defined networks. 2017 international conference on advances in computing, communications and informatics (ICACCI), 1366–1371.

  46. Mishra, A., Gupta, N. 2022. Supervised machine learning algorithms based on classification for detection of distributed denial of service attacks in SDN-enabled cloud computing. Cyber Security, Privacy and Networking: Proceedings of ICSPN 2021, 165–174.

  47. Patidar, S., Singh, S. 2021. Information theory-based techniques to detect DDoS in SDN: A survey. 2021 2nd International Conference on Secure Cyber Computing and Communications (ICSCCC), 529–534.

  48. Pattanaik, A., Gupta, A., Kanavalli, A. 2019. Early detection and diminution of DDoS attack instigated by compromised switches on the controller in software defined networks. 2019 IEEE International Conference on Distributed Computing, VLSI, Electrical Circuits and Robotics (DISCOVER), 1–5.

  49. Rodriguez, A., Quiñones, J., Iano, Y., Barra, M.A. 2022. A comparative evaluation of ODL and ONOS controllers in software-defined network environments. 2022 IEEE XXIX International Conference on Electronics, Electrical Engineering and Computing (INTERCON), 1–4.

  50. Ruchel, L.V., Turchetti, R.C., de Camargo, E.T. 2022. Evaluation of the robustness of SDN controllers ONOS and ODL. Computer Networks, 219, 109403.

  51. Sai, A.D., Tilak, B.H., Sanjith, N.S., Suhas, P., Sanjeetha, R. 2022. Detection and mitigation of low and slow DDoS attack in an SDN environment. 2022 International Conference on Distributed Computing, VLSI, Electrical Circuits and Robotics (DISCOVER), 106–111.

  52. Santos, R., Souza, D., Santo, W., Ribeiro, A., Moreno, E. 2020. Machine learning algorithms to detect DDoS attacks in SDN. Concurrency and Computation: Practice and Experience, 32, e5402.

  53. Shalini, P.V., Radha, V., Sanjeevi, S.G. 2021. DDoS attack detection in SDN using CUSUM. Proceedings of International Conference on Computational Intelligence and Data Engineering: ICCIDE 2020, 301–309.

  54. Shah, S. Q. A., Khan, F. Z., Ahmad, M. 2022. Mitigating TCP SYN flooding based EDOS attack in cloud computing environment using binomial distribution in SDN. Computer Communications, 182, 198–211.

  55. Shakil, M., Mohammed, A.F.Y., Arul, R., Bashir, A.K., Choi, J.K. 2022. A novel dynamic framework to detect DDoS in SDN using metaheuristic clustering. Transactions on Emerging Telecommunications Technologies, 33, e3622.

  56. Sheibani, M., Konur, S., Awan, I. 2022. DDoS attack detection and mitigation in software-defined networking-based 5G mobile networks with multiple controllers. 2022 9th International Conference on Future Internet of Things and Cloud (FiCloud), 32–39.

  57. Singh, A., Kaur, N., Kaur, H. 2022. An extensive vulnerability assessment and countermeasures in open network operating system software defined networking controller. Concurrency and Computation: Practice and Experience, 34, e6978.

  58. Singh, J., Behal, S. 2020. Detection and mitigation of DDoS attacks in SDN: A comprehensive review, research challenges and future directions. Computer Science Review, 37, 100279.

  59. Smida, K., Tounsi, H., Frikha, M., Song, Y.Q. 2020. Efficient SDN controller for safety applications in SDN-based vehicular networks: POX, floodlight, ONOS or OpenDaylight? 2020 IEEE Eighth International Conference on Communications and Networking (ComNet), 1–6.

  60. Sritharan, K., Elagumeeharan, R., Nakkeeran, S., Mohamed, A., Ganegoda, B., Yapa, K. 2022. Machine learning based distributed denial-of-services attacks detection and mitigation testbed for SDN-enabled IoT devices. 2022 13th International Conference on Computing Communication and Networking Technologies (ICCCNT), 1–6.

  61. Swami, R., Dave, M., Ranga, V. 2023. IQR-based approach for DDoS detection and mitigation in SDN. Defence Technology, 25, 76–87.

  62. Tayfour, O.E., Marsono, M.N. 2020. Collaborative detection and mitigation of distributed denial-of-service attacks on software-defined network. Mobile Networks and Applications, 25, 1338–1347.

  63. Uddin, R., Monir, M.F. 2020. Evaluation of four SDN controllers with firewall modules. Proceedings of the International Conference on Computing Advancements, 1–8.

  64. Valdovinos, I.A., Pérez-Díaz, J.A., Choo, K.K.R., Botero, J.F. 2021. Emerging DDoS attack detection and mitigation strategies in software-defined networks: Taxonomy, challenges, and future directions. Journal of Network and Computer Applications, 187, 103093.

  65. Valizadeh, P., Taghinezhad-Niar, A. 2022. DDoS attacks detection in multi-controller based software defined network. 2022 8th International Conference on Web Research (ICWR), 34–39.

  66. Varghese, J.E., Muniyal, B. 2021. Trend in SDN architecture for DDoS detection-a comparative study. 2021 IEEE International Conference on Distributed Computing, VLSI, Electrical Circuits and Robotics (DISCOVER), 170–174.

  67. Vishnu Priya, A. 2019. Reinforcement learning-based DoS mitigation in software defined networks. ICCCE 2018: Proceedings of the International Conference on Communications and Cyber Physical Engineering 2018, 393–401.

  68. Vishnu Priya, A., Singh, H.K. 2021. Mitigation of ARP cache poisoning in software-defined networks. Advances in Smart System Technologies. 85–94.

  69. Wang, X., Yin, S., Li, H., Wang, J., Teng, L. 2020. A network intrusion detection method based on deep multi-scale convolutional neural network. International Journal of Wireless Information Networks, 27, 503–517.

  70. Yaser, A.L., Mousa, H.M., Hussein, M. 2022. Improved DDoS detection utilizing deep neural networks and feedforward neural networks as autoencoder. Future Internet, 14, 240.

  71. Yin, S., Li, H., Teng, L., Laghari, A.A., Estrela, V.V. 2023. Attribute-based multiparty searchable encryption model for privacy protection of text data. Multimedia Tools and Applications, 1–22.

  72. Yin, S., Li, H., Laghari, A.A., Karim, S., Jumani, A.K. 2021. A bagging strategy-based kernel extreme learning machine for complex network intrusion detection. EAI Endorsed Transactions on Scalable Information Systems, 8(33), e8–e8.


ARTICLE INFORMATION

Received: 2023-12-19
Revised: 2024-01-04
Accepted: 2024-01-12


Cite this article:

Gupta, N., Tanwar, S., Badotra, S. 2024. A novel sFlow based DDoS detection model in software defined networking. International Journal of Applied Science and Engineering, 21, 2023510. https://doi.org/10.6703/IJASE.202406_21(2).005

  Copyright The Author(s). This is an open access article distributed under the terms of the Creative Commons Attribution License (CC BY 4.0), which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are cited.

Other people also read ...

doaj logo

 

2.3
2022CiteScore
 
 
48th percentile
Powered by  Scopus
 
 

SCImago Journal & Country Rank

IJASE - Most Read Articles

IJASE - Most popular articles