Efficient DDoS attack detection and prevention scheme based on SDN in cloud environment
For addressing the problem of two typical types of distributed denial of service (DDoS) attacks in cloud environment,a DDoS attack detection and prevention scheme called SDCC based on software defined network (SDN) architecture was proposed.SDCC used a combination of bandwidth detection and data flo...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Editorial Department of Journal on Communications
2018-04-01
|
| Series: | Tongxin xuebao |
| Subjects: | |
| Online Access: | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2018068/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841539461820710912 |
|---|---|
| author | Heng HE Yan HU Lianghan ZHENG Zhengyuan XUE |
| author_facet | Heng HE Yan HU Lianghan ZHENG Zhengyuan XUE |
| author_sort | Heng HE |
| collection | DOAJ |
| description | For addressing the problem of two typical types of distributed denial of service (DDoS) attacks in cloud environment,a DDoS attack detection and prevention scheme called SDCC based on software defined network (SDN) architecture was proposed.SDCC used a combination of bandwidth detection and data flow detection,utilized confidence-based filtering (CBF) method to calculate the CBF score of packets,judged the packet of CBF score below the threshold as an attacking packet,added its attribute information to the attack flow feature library,and sent the flow table to intercept it through SDN controller.Simulation results show that SDCC can detect and prevent different types of DDoS attacks effectively,and it has high detection efficiency,reduces the controller’s computation overhead,and achieves a low false positive rate. |
| format | Article |
| id | doaj-art-d92820c78d1d4ec4ab1a1b63b9563e0a |
| institution | Kabale University |
| issn | 1000-436X |
| language | zho |
| publishDate | 2018-04-01 |
| publisher | Editorial Department of Journal on Communications |
| record_format | Article |
| series | Tongxin xuebao |
| spelling | doaj-art-d92820c78d1d4ec4ab1a1b63b9563e0a2025-01-14T07:14:37ZzhoEditorial Department of Journal on CommunicationsTongxin xuebao1000-436X2018-04-013913915159717752Efficient DDoS attack detection and prevention scheme based on SDN in cloud environmentHeng HEYan HULianghan ZHENGZhengyuan XUEFor addressing the problem of two typical types of distributed denial of service (DDoS) attacks in cloud environment,a DDoS attack detection and prevention scheme called SDCC based on software defined network (SDN) architecture was proposed.SDCC used a combination of bandwidth detection and data flow detection,utilized confidence-based filtering (CBF) method to calculate the CBF score of packets,judged the packet of CBF score below the threshold as an attacking packet,added its attribute information to the attack flow feature library,and sent the flow table to intercept it through SDN controller.Simulation results show that SDCC can detect and prevent different types of DDoS attacks effectively,and it has high detection efficiency,reduces the controller’s computation overhead,and achieves a low false positive rate.http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2018068/cloud environmentDDoS attacksoftware defined networkconfidence-based filtering |
| spellingShingle | Heng HE Yan HU Lianghan ZHENG Zhengyuan XUE Efficient DDoS attack detection and prevention scheme based on SDN in cloud environment Tongxin xuebao cloud environment DDoS attack software defined network confidence-based filtering |
| title | Efficient DDoS attack detection and prevention scheme based on SDN in cloud environment |
| title_full | Efficient DDoS attack detection and prevention scheme based on SDN in cloud environment |
| title_fullStr | Efficient DDoS attack detection and prevention scheme based on SDN in cloud environment |
| title_full_unstemmed | Efficient DDoS attack detection and prevention scheme based on SDN in cloud environment |
| title_short | Efficient DDoS attack detection and prevention scheme based on SDN in cloud environment |
| title_sort | efficient ddos attack detection and prevention scheme based on sdn in cloud environment |
| topic | cloud environment DDoS attack software defined network confidence-based filtering |
| url | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2018068/ |
| work_keys_str_mv | AT henghe efficientddosattackdetectionandpreventionschemebasedonsdnincloudenvironment AT yanhu efficientddosattackdetectionandpreventionschemebasedonsdnincloudenvironment AT lianghanzheng efficientddosattackdetectionandpreventionschemebasedonsdnincloudenvironment AT zhengyuanxue efficientddosattackdetectionandpreventionschemebasedonsdnincloudenvironment |