Thesis Open Access

Internet Protocol (IP)-Based Distributed Denial of Server (DDoS) Attack Detection and Mitigation for Software Defined Networking (SDN) Controller

MULATU MEKONNEN

MARC21 XML Export

<?xml version='1.0' encoding='UTF-8'?>
<record xmlns="http://www.loc.gov/MARC21/slim">
  <leader>00000nam##2200000uu#4500</leader>
  <controlfield tag="005">20250114084425.0</controlfield>
  <controlfield tag="001">5778</controlfield>
  <datafield tag="856" ind1="4" ind2=" ">
    <subfield code="s">647925</subfield>
    <subfield code="z">md5:d45cbd5fd89e1d88df48cadeabb670f7</subfield>
    <subfield code="u">https://zenodo.org/record/5778/files/f1042664640.pdf</subfield>
  </datafield>
  <datafield tag="542" ind1=" " ind2=" ">
    <subfield code="l">open</subfield>
  </datafield>
  <datafield tag="260" ind1=" " ind2=" ">
    <subfield code="c">2019-06-01</subfield>
  </datafield>
  <datafield tag="909" ind1="C" ind2="O">
    <subfield code="p">user-dbu</subfield>
    <subfield code="p">user-zenodo</subfield>
    <subfield code="o">oai:zenodo.org:5778</subfield>
  </datafield>
  <datafield tag="100" ind1=" " ind2=" ">
    <subfield code="a">MULATU MEKONNEN</subfield>
  </datafield>
  <datafield tag="245" ind1=" " ind2=" ">
    <subfield code="a">Internet Protocol (IP)-Based Distributed Denial of Server (DDoS) Attack Detection and Mitigation for Software Defined Networking (SDN) Controller</subfield>
  </datafield>
  <datafield tag="980" ind1=" " ind2=" ">
    <subfield code="a">user-dbu</subfield>
  </datafield>
  <datafield tag="980" ind1=" " ind2=" ">
    <subfield code="a">user-zenodo</subfield>
  </datafield>
  <datafield tag="540" ind1=" " ind2=" ">
    <subfield code="u">http://www.opendefinition.org/licenses/cc-by</subfield>
    <subfield code="a">Creative Commons Attribution</subfield>
  </datafield>
  <datafield tag="650" ind1="1" ind2="7">
    <subfield code="a">cc-by</subfield>
    <subfield code="2">opendefinition.org</subfield>
  </datafield>
  <datafield tag="520" ind1=" " ind2=" ">
    <subfield code="a">&lt;p&gt;Software-defined networking architectural framework eases the life of the network&lt;br&gt;
administrators by isolating the data plane from the control plane. This facilitates&lt;br&gt;
easy configuration of the network, provides a programmable interface for developing&lt;br&gt;
applications related to management, security, logging etc. and the centralized logical&lt;br&gt;
controller gives more control over the entire network, which has the total visibility&lt;br&gt;
of the network.&lt;br&gt;
These advantages of SDN also expose the network to the vulnerabilities and the&lt;br&gt;
impact of the attacks are much severe when compared to conventional networks,&lt;br&gt;
where the network devices in itself provided protection from the attacks and limits&lt;br&gt;
the scope of the attacks.&lt;br&gt;
In this paper, we explore various attacks that can be launched on SDN at different&lt;br&gt;
layers. We also evaluate some of the existing security methods in mitigating the&lt;br&gt;
attacks. We also explore a possible solution to prevent DDoS attacks using entropy.&lt;br&gt;
A Distributed Denial of Service (DDoS) attack is a DoS attack utilizing multiple&lt;br&gt;
distributed attack sources. Every network in the system has an entropy. Increase&lt;br&gt;
in randomness causes decrease in entropy. To mitigate this threat, this project&lt;br&gt;
proposes to use the central control of SDN for attack detection and introduces a&lt;br&gt;
solution that is effective and lightweight in terms of the resources that it uses.&lt;br&gt;
More precisely, this project shows how DDoS attacks can exhaust controller resources&lt;br&gt;
and provides a solution to detect such attacks based on the entropy variation of&lt;br&gt;
the destination IP address. Based on this value if it drops below threshold , we are&lt;br&gt;
blocking the specific port in the switch and bring the port down. This method is able&lt;br&gt;
to detect DDoS within the first five hundred packets of the attack traffic&lt;/p&gt;</subfield>
  </datafield>
  <datafield tag="773" ind1=" " ind2=" ">
    <subfield code="n">doi</subfield>
    <subfield code="i">isVersionOf</subfield>
    <subfield code="a">10.20372/nadre:5777</subfield>
  </datafield>
  <datafield tag="024" ind1=" " ind2=" ">
    <subfield code="a">10.20372/nadre:5778</subfield>
    <subfield code="2">doi</subfield>
  </datafield>
  <datafield tag="980" ind1=" " ind2=" ">
    <subfield code="a">publication</subfield>
    <subfield code="b">thesis</subfield>
  </datafield>
</record>
0
0
views
downloads
All versions This version
Views 00
Downloads 00
Data volume 0 Bytes0 Bytes
Unique views 00
Unique downloads 00
More info on how stats are collected.
Indexed in
Publication date:
June 1, 2019
DOI:
10.20372/nadre:5778

Zenodo DOI Badge

DOI 

10.20372/nadre:5778

Markdown 

[![DOI](https://nadre.ethernet.edu.et/badge/DOI/10.20372/nadre:5778.svg)](https://doi.org/10.20372/nadre:5778)

reStructedText 

.. image:: https://nadre.ethernet.edu.et/badge/DOI/10.20372/nadre:5778.svg
   :target: https://doi.org/10.20372/nadre:5778

HTML 

<a href="https://doi.org/10.20372/nadre:5778"><img src="https://nadre.ethernet.edu.et/badge/DOI/10.20372/nadre:5778.svg" alt="DOI"></a>

Image URL 

https://nadre.ethernet.edu.et/badge/DOI/10.20372/nadre:5778.svg

Target URL 

https://doi.org/10.20372/nadre:5778

Communities:
License (for files):
Creative Commons Attribution

Versions

Version 1 10.20372/nadre:5778 Jun 1, 2019
Cite all versions? You can cite all versions by using the DOI 10.20372/nadre:5777. This DOI represents all versions, and will always resolve to the latest one. Read more.

Share

Cite as

Export