An extensive vulnerability assessment and countermeasures in open network operating system software defined networking controller

Singh, Avtar; Kaur, Navjot; Kaur, Harpreet

doi:10.1002/cpe.6978

Cited by 6 publications

(2 citation statements)

References 69 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Likewise, given the specific conceptualization of the SDN, which is based on the centralization of network management by a single control plane, the integration of IoT devices in the SDN also requires the need for robust detection mechanisms of the DDoS attacks, which can be adapted to the dynamic nature of IoT traffic. 12,13 DDoS is a cyberattack that involves flooding a network, a website, or an online service with massive amounts of traffic from various sources to disrupt normal operations. 14 Typically, the attacker employs a network of compromised devices, called a botnet, to carry out the attack, rendering the targeted system unavailable to legitimate users.…”

Section: Introductionmentioning

confidence: 99%

“…However, the massive scale and the heterogeneity of IoT networks make them vulnerable to various security threats, such as Distributed Denial of Service attacks (DDoS), 11 which can compromise the availability and performance of critical IoT services. Likewise, given the specific conceptualization of the SDN, which is based on the centralization of network management by a single control plane, the integration of IoT devices in the SDN also requires the need for robust detection mechanisms of the DDoS attacks, which can be adapted to the dynamic nature of IoT traffic 12,13 …”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

An efficient approach to detect distributed denial of service attacks for software defined internet of things combining autoencoder and extreme gradient boosting with feature selection and hyperparameter tuning optimization

Setitra

Fan

Bensalem

2023

Trans Emerging Tel Tech

View full text Add to dashboard Cite

The growing popularity of Software Defined Networks (SDN) and the Internet of Things (IoT) has led to the emergence of Software Defined Internet of Things (SDIoT) based on centralized network management by the Control Plane, which can handle the dynamic nature of IoT devices and the high volume of network traffic. However, due to their specific design, SDIoTs are the ideal target for Distributed Denial of Service (DDoS) attacks, becoming one of the most destructive threats. Machine learning (ML) techniques are best suited to solve this problem due to the recent growth and sophistication of DDoS attacks. In this study, we propose an enhanced deep learning approach based on combining AutoEncoder (AE) and Extreme Gradient Boosting (XGBoost). First, we applied the SHapley Additive exPlanations (SHAP) feature selection method to select the appropriate features subset according to their correlation results. Next, the AE is trained on the previous subset to learn a compact representation of the input features. The latent representation generated by the AE is then used as input for the XGBoost model, which is trained to predict the target variable and classify the traffic as usual or attack. In parallel, Grid Search Cross Validation (GSCV) is used to find the optimal hyperparameters for the AE‐XGBoost. The experimental results using two publicly available realistic SDN‐Iot datasets demonstrate that the proposed approach enables precise identification of DDoS attacks in SDIoT networks, achieving a 99.9920% accuracy, an F1 score of 0.999917, and a low false positive rate. Furthermore, the proposed model's performance exceeds that of the models used for comparison.

show abstract

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%