An Entropy Based Anomaly Traffic Detection Approach in SDN
SDN(software defined networking)is a novel network infrastructure which separate the control plane from the data plane. Taking advantage of the idea of SDN, a central security center was built which collected traffic from the SDN data plane entity for analyzing. The attacks can be detected based on...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Beijing Xintong Media Co., Ltd
2015-09-01
|
| Series: | Dianxin kexue |
| Subjects: | |
| Online Access: | http://www.telecomsci.com/zh/article/doi/10.11959/j.issn.1000-0801.2015217/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841529644468142080 |
|---|---|
| author | Mingxin Wang Huachun Zhou Jia Chen Hongke Zhang |
| author_facet | Mingxin Wang Huachun Zhou Jia Chen Hongke Zhang |
| author_sort | Mingxin Wang |
| collection | DOAJ |
| description | SDN(software defined networking)is a novel network infrastructure which separate the control plane from the data plane. Taking advantage of the idea of SDN, a central security center was built which collected traffic from the SDN data plane entity for analyzing. The attacks can be detected based on the entropy variation of the identifier and locate the type of attack with the classification algorithm. As the anomaly patterns were detected, the security center would cooperate with the central controller to install the flow table to alleviate the influence of the attack. The anomaly traffic can be detected early and can't influence the performance of the controller. Besides, the controller can be protected from attack based on our system. |
| format | Article |
| id | doaj-art-c078a1b076ce41c2bcbad4a9ce02c417 |
| institution | Kabale University |
| issn | 1000-0801 |
| language | zho |
| publishDate | 2015-09-01 |
| publisher | Beijing Xintong Media Co., Ltd |
| record_format | Article |
| series | Dianxin kexue |
| spelling | doaj-art-c078a1b076ce41c2bcbad4a9ce02c4172025-01-15T03:16:37ZzhoBeijing Xintong Media Co., LtdDianxin kexue1000-08012015-09-0131838959613628An Entropy Based Anomaly Traffic Detection Approach in SDNMingxin WangHuachun ZhouJia ChenHongke ZhangSDN(software defined networking)is a novel network infrastructure which separate the control plane from the data plane. Taking advantage of the idea of SDN, a central security center was built which collected traffic from the SDN data plane entity for analyzing. The attacks can be detected based on the entropy variation of the identifier and locate the type of attack with the classification algorithm. As the anomaly patterns were detected, the security center would cooperate with the central controller to install the flow table to alleviate the influence of the attack. The anomaly traffic can be detected early and can't influence the performance of the controller. Besides, the controller can be protected from attack based on our system.http://www.telecomsci.com/zh/article/doi/10.11959/j.issn.1000-0801.2015217/SDNsecurity centerentropyDDoS |
| spellingShingle | Mingxin Wang Huachun Zhou Jia Chen Hongke Zhang An Entropy Based Anomaly Traffic Detection Approach in SDN Dianxin kexue SDN security center entropy DDoS |
| title | An Entropy Based Anomaly Traffic Detection Approach in SDN |
| title_full | An Entropy Based Anomaly Traffic Detection Approach in SDN |
| title_fullStr | An Entropy Based Anomaly Traffic Detection Approach in SDN |
| title_full_unstemmed | An Entropy Based Anomaly Traffic Detection Approach in SDN |
| title_short | An Entropy Based Anomaly Traffic Detection Approach in SDN |
| title_sort | entropy based anomaly traffic detection approach in sdn |
| topic | SDN security center entropy DDoS |
| url | http://www.telecomsci.com/zh/article/doi/10.11959/j.issn.1000-0801.2015217/ |
| work_keys_str_mv | AT mingxinwang anentropybasedanomalytrafficdetectionapproachinsdn AT huachunzhou anentropybasedanomalytrafficdetectionapproachinsdn AT jiachen anentropybasedanomalytrafficdetectionapproachinsdn AT hongkezhang anentropybasedanomalytrafficdetectionapproachinsdn AT mingxinwang entropybasedanomalytrafficdetectionapproachinsdn AT huachunzhou entropybasedanomalytrafficdetectionapproachinsdn AT jiachen entropybasedanomalytrafficdetectionapproachinsdn AT hongkezhang entropybasedanomalytrafficdetectionapproachinsdn |