SDN enabled DDoS attack detection and mitigation for 5G networks

Bhulok Aryal; Robert Abbas; Iain Collings

doi:10.12720/jcm.16.7.267-275

SDN enabled DDoS attack detection and mitigation for 5G networks

Bhulok Aryal, Robert Abbas, Iain Collings

School of Engineering

Research output: Contribution to journal › Article › peer-review

1 Citation (Scopus)

352 Downloads (Pure)

Abstract

This paper proposes a hybrid technique for distributed denial-of-service (DDoS) attack detection that combines statistical analysis and machine learning, with software defined networking (SDN) security. Data sets are analyzed in an iterative approach and compared to a dynamic threshold. Sixteen features are extracted, and machine learning is used to examine correlation measures between the features. A dynamically configured SDN is employed with software defined security (SDS), to provide a robust policy framework to protect the availability and integrity, and to maintain privacy of all the networks with quick response remediation. Machine learning is further employed to increase the precision of detection. This increases the accuracy from 87/88% to 99.86%, with reduced false positive ratio (FPR). The results obtained based on experimental data-sets outperformed existing techniques.

Original language	English
Pages (from-to)	267-275
Number of pages	9
Journal	Journal of Communication
Volume	16
Issue number	7
DOIs	https://doi.org/10.12720/jcm.16.7.267-275
Publication status	Published - Jul 2021

Bibliographical note

Copyright the Author(s) 2021. Version archived for private and non-commercial use with the permission of the author/s and according to publisher conditions. For further rights please contact the publisher.

Access to Document

10.12720/jcm.16.7.267-275Licence: CC BY-NC-ND

Publisher version (open access)Final published version, 543 KBLicence: CC BY-NC-ND

Cite this

@article{addbe8fc68e2457ba162e3e88589e573,

title = "SDN enabled DDoS attack detection and mitigation for 5G networks",

abstract = "This paper proposes a hybrid technique for distributed denial-of-service (DDoS) attack detection that combines statistical analysis and machine learning, with software defined networking (SDN) security. Data sets are analyzed in an iterative approach and compared to a dynamic threshold. Sixteen features are extracted, and machine learning is used to examine correlation measures between the features. A dynamically configured SDN is employed with software defined security (SDS), to provide a robust policy framework to protect the availability and integrity, and to maintain privacy of all the networks with quick response remediation. Machine learning is further employed to increase the precision of detection. This increases the accuracy from 87/88% to 99.86%, with reduced false positive ratio (FPR). The results obtained based on experimental data-sets outperformed existing techniques.",

author = "Bhulok Aryal and Robert Abbas and Iain Collings",

note = "Copyright the Author(s) 2021. Version archived for private and non-commercial use with the permission of the author/s and according to publisher conditions. For further rights please contact the publisher.",

year = "2021",

month = jul,

doi = "10.12720/jcm.16.7.267-275",

language = "English",

volume = "16",

pages = "267--275",

journal = "Journal of Communication",

issn = "0021-9916",

publisher = "Wiley-Blackwell, Wiley",

number = "7",

}

TY - JOUR

T1 - SDN enabled DDoS attack detection and mitigation for 5G networks

AU - Aryal, Bhulok

AU - Abbas, Robert

AU - Collings, Iain

N1 - Copyright the Author(s) 2021. Version archived for private and non-commercial use with the permission of the author/s and according to publisher conditions. For further rights please contact the publisher.

PY - 2021/7

Y1 - 2021/7

N2 - This paper proposes a hybrid technique for distributed denial-of-service (DDoS) attack detection that combines statistical analysis and machine learning, with software defined networking (SDN) security. Data sets are analyzed in an iterative approach and compared to a dynamic threshold. Sixteen features are extracted, and machine learning is used to examine correlation measures between the features. A dynamically configured SDN is employed with software defined security (SDS), to provide a robust policy framework to protect the availability and integrity, and to maintain privacy of all the networks with quick response remediation. Machine learning is further employed to increase the precision of detection. This increases the accuracy from 87/88% to 99.86%, with reduced false positive ratio (FPR). The results obtained based on experimental data-sets outperformed existing techniques.

AB - This paper proposes a hybrid technique for distributed denial-of-service (DDoS) attack detection that combines statistical analysis and machine learning, with software defined networking (SDN) security. Data sets are analyzed in an iterative approach and compared to a dynamic threshold. Sixteen features are extracted, and machine learning is used to examine correlation measures between the features. A dynamically configured SDN is employed with software defined security (SDS), to provide a robust policy framework to protect the availability and integrity, and to maintain privacy of all the networks with quick response remediation. Machine learning is further employed to increase the precision of detection. This increases the accuracy from 87/88% to 99.86%, with reduced false positive ratio (FPR). The results obtained based on experimental data-sets outperformed existing techniques.

UR - http://www.scopus.com/inward/record.url?scp=85109340407&partnerID=8YFLogxK

U2 - 10.12720/jcm.16.7.267-275

DO - 10.12720/jcm.16.7.267-275

M3 - Article

AN - SCOPUS:85109340407

VL - 16

SP - 267

EP - 275

JO - Journal of Communication

JF - Journal of Communication

SN - 0021-9916

IS - 7

ER -

SDN enabled DDoS attack detection and mitigation for 5G networks

Abstract

Bibliographical note

Access to Document

Other files and links

Fingerprint

Cite this