Open Access iconOpen Access

ARTICLE

crossmark

Entropy-Based Approach to Detect DDoS Attacks on Software Defined Networking Controller

by Mohammad Aladaileh1, Mohammed Anbar1,*, Iznan H. Hasbullah1, Yousef K. Sanjalawe1,2, Yung-Wey Chong1

1 National Advanced IPv6 Centre of Excellence, Universiti Sains Malaysia, Penang, Malaysia
2 Department of Computer Sciences, Northern Border University, Ar’ar, Kingdom of Saudi Arabia

* Corresponding Author: Mohammed Anbar. Email: email

Computers, Materials & Continua 2021, 69(1), 373-391. https://doi.org/10.32604/cmc.2021.017972

Abstract

The Software-Defined Networking (SDN) technology improves network management over existing technology via centralized network control. The SDN provides a perfect platform for researchers to solve traditional network’s outstanding issues. However, despite the advantages of centralized control, concern about its security is rising. The more traditional network switched to SDN technology, the more attractive it becomes to malicious actors, especially the controller, because it is the network’s brain. A Distributed Denial of Service (DDoS) attack on the controller could cripple the entire network. For that reason, researchers are always looking for ways to detect DDoS attacks against the controller with higher accuracy and lower false-positive rate. This paper proposes an entropy-based approach to detect low-rate and high-rate DDoS attacks against the SDN controller, regardless of the number of attackers or targets. The proposed approach generalized the Rényi joint entropy for analyzing the network traffic flow to detect DDoS attack traffic flow of varying rates. Using two packet header features and generalized Rényi joint entropy, the proposed approach achieved a better detection rate than the EDDSC approach that uses Shannon entropy metrics.

Keywords


Cite This Article

APA Style
Aladaileh, M., Anbar, M., Hasbullah, I.H., Sanjalawe, Y.K., Chong, Y. (2021). Entropy-based approach to detect ddos attacks on software defined networking controller. Computers, Materials & Continua, 69(1), 373-391. https://doi.org/10.32604/cmc.2021.017972
Vancouver Style
Aladaileh M, Anbar M, Hasbullah IH, Sanjalawe YK, Chong Y. Entropy-based approach to detect ddos attacks on software defined networking controller. Comput Mater Contin. 2021;69(1):373-391 https://doi.org/10.32604/cmc.2021.017972
IEEE Style
M. Aladaileh, M. Anbar, I. H. Hasbullah, Y. K. Sanjalawe, and Y. Chong, “Entropy-Based Approach to Detect DDoS Attacks on Software Defined Networking Controller,” Comput. Mater. Contin., vol. 69, no. 1, pp. 373-391, 2021. https://doi.org/10.32604/cmc.2021.017972



cc Copyright © 2021 The Author(s). Published by Tech Science Press.
This work is licensed under a Creative Commons Attribution 4.0 International License , which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
  • 3127

    View

  • 2063

    Download

  • 0

    Like

Share Link