SpringerLink
Log in

Ensembled Machine Learning Techniques for DDoS Detection in SDN

  • Conference paper
  • First Online:
Proceedings of Third International Conference on Advances in Computer Engineering and Communication Systems

Part of the book series: Lecture Notes in Networks and Systems ((LNNS,volume 612))

  • 347 Accesses

Abstract

Software Defined Networking(SDN) focuses on overcoming the drawbacks of traditional networks and offers the advantage of flexibility in managing the networks. On the other hand, this new paradigm makes networks susceptible to attacks. DDoS is one of those significant attacks. DDoS makes resources unavailable to legitimate users, and one of the mechanisms that attackers follow is the TCP-SYN flood to launch the DDoS attack. The TCP SYN flood attack takes advantage of the three-way handshake to exhaust the web server’s resources. We proposed an approach to detect DDoS attacks in SDN based on an ensemble technique.Our proposed approach uses stacking model, combining bagging and boosting models as ensembled techniques. we implemented our proposed approach on dataset. We have generated our own dataset containing the required features. We show that our proposed approach gives better accuracy than existing models in the literature. We validated our proposed approach on both generated dataset and existing dataset.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
EUR 32.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or Ebook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
EUR 29.95
Price includes VAT (Germany)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
EUR 192.59
Price includes VAT (Germany)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
EUR 246.09
Price includes VAT (Germany)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free ship** worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  • A. Banitalebi Dehkordi, M.R. Soltanaghaei, F.Z. Boroujeni, The DDoS attacks detection through machine learning and statistical methods in SDN. J. Supercomputing 77(3), 2383–2415 (2021)

    Google Scholar 

  • K. Bhushan, B.B. Gupta, Distributed denial of service (DDoS) attack mitigation in software defined network (SDN)-based cloud computing environment. J. Ambient Intell. Humanized Comput. 10(5), 1985–1997 (2019)

    Google Scholar 

  • R. Braga, E. Mota, A. Passito, Lightweight DDoS flooding attack detection using NOX/OpenFlow, in IEEE Local Computer Network Conference (IEEE, 2010), pp. 408-415

    Google Scholar 

  • Z. Chen, et al., XGBoost classifier for DDoS attack detection and analysis in SDN-based cloud, in IEEE international conference on big data and smart computing (bigcomp) (IEEE, 2018), pp. 251–256

    Google Scholar 

  • V. Deepa, K. Muthamil Sudar, P. Deepalakshmi, Design of ensemble learning methods for DDos detection in SDN environment, in 2019 International Conference on Vision Towards Emerging Trends in Communication and Networking (ViTECoN) (IEEE, 2019), pp. 1–6

    Google Scholar 

  • M. Dimolianis, Mitigation ofmulti-vector network attacks via orchestration of distributed rule placement, in IFIP/IEEE Symposium on Integrated Network and Service Management (IM) (IEEE, 2019), pp. 162–170

    Google Scholar 

  • Y. Jarraya, T. Madi,M. Debbabi, A survey and a layered taxonomy of software-defined networking. IEEE Commun. Surv. Tutorials 16(4), 1955–1980 (2014)

    Google Scholar 

  • A.S. Jose, L.R. Nair, V. Paul, Towards detecting flooding DDOS attacks over software defined networks using machine learning techniques. Revista Geintec-Gestao Inovacao E Tecnologias 11(4), 3837–3865 (2021)

    Google Scholar 

  • J.A. Perez-Diaz et al., A flexible SDN-based architecture for identifying and mitigating low-rate DDoS attacks using machine learning. IEEE Access 8, 155859–155872 (2020)

    Google Scholar 

  • N.N. Tuan et al., A DDoS attack mitigation scheme in ISP networks using machine learning based on SDN. Electronics 9(3), 413 (2020)

    Google Scholar 

  • R.Wang, Z. Jia, J. Lei, Anentropy-based distributedDDoSdetectionmechanism in software-defined networking, in IEEE Trustcom/BigDataSE/ISPA, vol. 1. (IEEE, 2015), pp. 310–317

    Google Scholar 

  • J.Ye et al., ADDoS attack detectionmethod based on SVMin software defined network, in Security and Communication Networks 2018 (2018)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. School of Computer and Information Sciences, University of Hyderabad, Hyderabad, India

    P. Tarakanadha Reddy

  2. Department of Computer Science and Engineering, National Institute of Technology, Warangal, India

    P. V. Shalini

  3. Centre for Cloud Computing, Institute for Development and Research in Banking Technology, Hyderabad, India

    P. Tarakanadha Reddy, P. V. Shalini & V. Radha

Authors
  1. P. Tarakanadha Reddy
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. P. V. Shalini
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. V. Radha
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to P. Tarakanadha Reddy .

Editor information

Editors and Affiliations

  1. Department of Computer Science and Engineering, VNR VJIET, Hyderabad, India

    A. Brahmananda Reddy

  2. Department of Computer Science and Engineering and Computer Science and Business Systems, VNR VJIET, Hyderabad, India

    S. Nagini

  3. Department of Automatics and Applied Software, “Aurel Vlaicu” University of Arad, Arad, Romania

    Valentina E. Balas

  4. Department of Computer Science and Engineering, CMR Technical Campus, Hyderabad, India

    K. Srujan Raju

Rights and permissions

Reprints and permissions

Copyright information

© 2023 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Tarakanadha Reddy, P., Shalini, P.V., Radha, V. (2023). Ensembled Machine Learning Techniques for DDoS Detection in SDN. In: Reddy, A.B., Nagini, S., Balas, V.E., Raju, K.S. (eds) Proceedings of Third International Conference on Advances in Computer Engineering and Communication Systems. Lecture Notes in Networks and Systems, vol 612. Springer, Singapore. https://doi.org/10.1007/978-981-19-9228-5_32

Download citation

Publish with us

Policies and ethics

Search

Navigation