Counteracting UDP Flooding Attacks in SDN

Wei, Hung-Chuan; Tung, Yung-Hao; Yu, Chia-Fu

doi:10.3390/electronics9081239

Cited by 7 publications

(3 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…is will probably lead to an unexpected operation accident. According to the weaknesses of protocols within TCE, several categories of DoS attacks could happen: UDP flood attacks [30] exploiting the weaknesses of TRDP and UDP, SYN flood attacks [31] exploiting the weaknesses of TRDP and TCP, MAC flood attacks [32] exploiting the weaknesses of switch tables, and Smurf attacks [33] exploiting the weaknesses of ICMP.…”

Section: Underlying Temporal Intrusions Against Tcementioning

confidence: 99%

See 1 more Smart Citation

Detecting Temporal Attacks: An Intrusion Detection System for Train Communication Ethernet Based on Dynamic Temporal Convolutional Network

Yue

Wang

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

The train communication Ethernet (TCE) of modern intelligent trains is under an ever-increasing threat of serious network attacks. Denial of service (DoS) and man in the middle (MITM), the two most destructive attacks against TCE, are difficult to detect by conventional methods. Aiming at their highly time-correlated properties, a novel dynamic temporal convolutional network-based intrusion detection system (DyTCN-IDS) is proposed in this paper to detect these temporal attacks. A semiphysical TCE testbed that is capable of simulating real situations in TCE-based trains is first built to generate an effective dataset for training and testing. DyTCN-IDS consists of two phases, and in the first phase, systematic feature engineering is designed to optimize the dataset. In the second phase, a basic detection model that is good at dealing with temporal features is first built by utilizing the temporal convolutional network with several architectural optimizations. Then, in order to decrease the computational consumption waste on network packet sequences with different lengths of inner temporal relationships, dynamic neural network technology is further adopted to optimize the basic detection model. Diverse experiments were carried out to evaluate the proposed system from different angles. The experimental results indicate that our system is easy to train, converges fast, costs less computational resources, and achieves satisfying detection performance with a macro false alarm rate of 0.09%, a macro F-score of 99.39%, and an accuracy of 99.40%. Compared to some canonical DL-based IDS and some latest IDS, our system acquires the best overall detection performance as well.

show abstract

Section: Underlying Temporal Intrusions Against Tcementioning

confidence: 99%

“…According to equation ( 4), networks with such TCN blocks have the receptive field size of [31,127,511,2047,8095]. Accordingly, we fed different input packet sequences with seq Len � [30,120,500,2000,8000] from TCE-IDS dataset into these five models. Experimental results are shown in Figure 14.…”

Section: Parameter Tuning Experiments For Specialmentioning

confidence: 99%

Detecting Temporal Attacks: An Intrusion Detection System for Train Communication Ethernet Based on Dynamic Temporal Convolutional Network

Yue

Wang

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Attack in SDN Scenario: In an SDN architecture, an attacker could launch a UDP flood attack against an SDN switch or an SDN controller. The attacker could use a tool to generate a high volume of UDP packets and send them to the target device, causing it to become overwhelmed with traffic and unable to process incoming requests [120], [121].…”

Section: Udp Flood Attackmentioning

confidence: 99%