24x7 Service; AnyTime; AnyWhere

An intelligent software defined networking controller component to detect and mitigate denial of service attacks

Polat, Onur and Polat, Huseyin (2021) An intelligent software defined networking controller component to detect and mitigate denial of service attacks. Journal of Information and Communication Technology, 20 (01). pp. 57-81. ISSN 2180-3862

[thumbnail of JICT 20 01 2021 57-81.pdf] PDF - Published Version
Restricted to Registered users only

Download (1MB) | Request a copy


Despite many advantages of software defined networking (SDN) such as manageability, scalability, and performance, it has inherent security threats. In particular, denial of service (DoS) attacks are major threats to SDN. The controller processing and communication abilities are overwhelmed by DoS attacks. The capacity of the flow tables in the switching device is exhausted due to excess flows created by the controller because of malicious packets. DoS attacks on the controller cause the network performance to drop to a critical level. In this paper, a new SDN controller component was proposed to detect and mitigate DoS attacks in the SDN controller. POX layer three controller component was used for underlying a testbed for PacketIn messages. Any packet from the host was incremented to measure the rate of packet according to its device identification and its input port number. Considering the rate of packets received by the controller and threshold set, malicious packets could be detected and mitigated easily. A developed controller component was tested in a Mininet simulation environment with an hping3 tool to build artificial DoS attacks. Using the enhanced controller component, DoS packets were prevented from accessing the controller and thus, the data plane (switching devices) was prevented from being filled with unwanted flows.

Item Type: Article
Uncontrolled Keywords: Security, DoS attack, decision making, software defined networking, POX controller
Subjects: T Technology > TK Electrical engineering. Electronics Nuclear engineering
Divisions: College of Arts and Sciences
Depositing User: Mrs Nurin Jazlina Hamid
Date Deposited: 07 Aug 2022 02:54
Last Modified: 07 Aug 2022 02:54

Actions (login required)

View Item View Item