ADVICE: Towards adaptive scheduling for data collection and DDoS detection in SDN. (December 2021)
- Record Type:
- Journal Article
- Title:
- ADVICE: Towards adaptive scheduling for data collection and DDoS detection in SDN. (December 2021)
- Main Title:
- ADVICE: Towards adaptive scheduling for data collection and DDoS detection in SDN
- Authors:
- Peng, Jin-cheng
Cui, Yun-he
Qian, Qing
Guo, Chun
Jiang, Chao-hui
Li, Sai-fei - Abstract:
- Abstract: Distributed Denial of Service (DDoS) is one of the most rampant attacks which threaten network security. To overcome DDoS in Software-Defined Networking (SDN), many DDoS detection methods have been presented, among which periodic detection approaches with a specific interval are widely utilized. However, periodic data collection and DDoS detection may result in high network load occupancy between SDN controller and switches, high overhead of SDN controller, and long response time to DDoS attacks. Hence, in order to address those issues above, an AD aptiV e schedulI ng for data C ollection and DDoS dE tection (ADVICE) mechanism is proposed in this work, to flexibly adjust the data collection and detection interval and decrease the workload of the SDN controller. Instead of detects all flow entries at one period, ADVICE collects the flow statistic information with dynamic intervals and finely-grained initiate DDoS detection for each flow entry. Based on the survival time and credence degree of each flow entry, ADVICE can reduce the network load occupancy and assure the rapid detection of DDoS. Experimental results indicate that ADVICE can effectively minimize the controller's workload and optimize the usage of the limited switch-controller connection bandwidth, shorten the response time of DDoS attacks compared with state-of-the-art methods, and thus protect the network from various DDoS attacks.
- Is Part Of:
- Journal of information security and applications. Volume 63(2022)
- Journal:
- Journal of information security and applications
- Issue:
- Volume 63(2022)
- Issue Display:
- Volume 63, Issue 2022 (2022)
- Year:
- 2022
- Volume:
- 63
- Issue:
- 2022
- Issue Sort Value:
- 2022-0063-2022-0000
- Page Start:
- Page End:
- Publication Date:
- 2021-12
- Subjects:
- Software-defined networking -- DDoS -- Data collection -- Fine-grained DDoS detection trigger
Computer security -- Periodicals
Information technology -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/ ↗
- DOI:
- 10.1016/j.jisa.2021.103017 ↗
- Languages:
- English
- ISSNs:
- 2214-2126
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 20158.xml