DDoS attack detection method based on conditional entropy and GHSOM in SDN
Software defined networking (SDN) simplifies the network architecture,while the controller is also faced with a security threat of “single point of failure”.Attackers can send a large number of forged data flows that do not exist in the flow tables of the switches,affecting the normal performance of...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Editorial Department of Journal on Communications
2018-08-01
|
| Series: | Tongxin xuebao |
| Subjects: | |
| Online Access: | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2018140/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841539405775372288 |
|---|---|
| author | Junfeng TIAN Liuling QI |
| author_facet | Junfeng TIAN Liuling QI |
| author_sort | Junfeng TIAN |
| collection | DOAJ |
| description | Software defined networking (SDN) simplifies the network architecture,while the controller is also faced with a security threat of “single point of failure”.Attackers can send a large number of forged data flows that do not exist in the flow tables of the switches,affecting the normal performance of the network.In order to detect the existence of this kind of attack,the DDoS attack detection method based on conditional entropy and GHSOM in SDN (MBCE&G) was presented.Firstly,according to the phased features of DDoS,the damaged switch in the network was located to find the suspect attack flows.Then,according to the diversity characteristics of the suspected attack flow,the quaternion feature vector was extracted in the form of conditional entropy,as the input features of the neural network for more accurate analysis.Finally,the experimental environment was built to complete the verification.The experimental results show that MBCE&G detection method can effectively detect DDoS attacks in SDN network. |
| format | Article |
| id | doaj-art-14aa4fdcebee4a3a9af31021cf97c906 |
| institution | Kabale University |
| issn | 1000-436X |
| language | zho |
| publishDate | 2018-08-01 |
| publisher | Editorial Department of Journal on Communications |
| record_format | Article |
| series | Tongxin xuebao |
| spelling | doaj-art-14aa4fdcebee4a3a9af31021cf97c9062025-01-14T07:15:20ZzhoEditorial Department of Journal on CommunicationsTongxin xuebao1000-436X2018-08-013914014959720133DDoS attack detection method based on conditional entropy and GHSOM in SDNJunfeng TIANLiuling QISoftware defined networking (SDN) simplifies the network architecture,while the controller is also faced with a security threat of “single point of failure”.Attackers can send a large number of forged data flows that do not exist in the flow tables of the switches,affecting the normal performance of the network.In order to detect the existence of this kind of attack,the DDoS attack detection method based on conditional entropy and GHSOM in SDN (MBCE&G) was presented.Firstly,according to the phased features of DDoS,the damaged switch in the network was located to find the suspect attack flows.Then,according to the diversity characteristics of the suspected attack flow,the quaternion feature vector was extracted in the form of conditional entropy,as the input features of the neural network for more accurate analysis.Finally,the experimental environment was built to complete the verification.The experimental results show that MBCE&G detection method can effectively detect DDoS attacks in SDN network.http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2018140/software defined networkingconditional entropyneural networkDDoS attack |
| spellingShingle | Junfeng TIAN Liuling QI DDoS attack detection method based on conditional entropy and GHSOM in SDN Tongxin xuebao software defined networking conditional entropy neural network DDoS attack |
| title | DDoS attack detection method based on conditional entropy and GHSOM in SDN |
| title_full | DDoS attack detection method based on conditional entropy and GHSOM in SDN |
| title_fullStr | DDoS attack detection method based on conditional entropy and GHSOM in SDN |
| title_full_unstemmed | DDoS attack detection method based on conditional entropy and GHSOM in SDN |
| title_short | DDoS attack detection method based on conditional entropy and GHSOM in SDN |
| title_sort | ddos attack detection method based on conditional entropy and ghsom in sdn |
| topic | software defined networking conditional entropy neural network DDoS attack |
| url | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2018140/ |
| work_keys_str_mv | AT junfengtian ddosattackdetectionmethodbasedonconditionalentropyandghsominsdn AT liulingqi ddosattackdetectionmethodbasedonconditionalentropyandghsominsdn |