Skip to Main Content
 

Global Search Box

 
 
 
 

Files

File List


Basheer Al-mafrachi Thesis .pdf (1.67 MB)

ETD Abstract Container

Abstract Header

Detection of DDoS Attacks against the SDN Controller using Statistical Approaches

Al-Mafrachi, Basheer Husham Ali
http://orcid.org/0000-0003-1392-5953
http://rave.ohiolink.edu/etdc/view?acc_num=wright1513738941473344

Abstract Details

2017, Master of Science in Computer Engineering (MSCE), Wright State University, Computer Engineering.
In traditional networks, switches and routers are very expensive, complex, and inflexible because forwarding and handling of packets are in the same device. However, Software Defined Networking (SDN) makes networks design more flexible, cheaper, and programmable because it separates the control plane from the data plane. SDN gives administrators of networks more flexibility to handle the whole network by using one device which is the controller. Unfortunately, SDN faces a lot of security problems that may severely affect the network operations if not properly addressed. Threat vectors may target main components of SDN such as the control plane, the data plane, and/or the application. Threats may also target the communication among these components. Among the threats that can cause significant damages include attacks on the control plane and communication between the controller and other networks components by exploiting the vulnerabilities in the controller or communication protocols. Controllers of SDN and their communications may be subjected to different types of attacks. DDoS attacks on the SDN controller can bring the network down. In this thesis, we have studied various form of DDoS attacks against the controller of SDN. We conducted a comparative study of a set of methods for detecting DDoS attacks on the SDN controller and identifying compromised switch interfaces. These methods are sequential probability ratio test (SPRT), count-based detection (CD), percentage-based detection (PD), and entropy-based detection (ED). We implemented the detection methods and evaluated the performance of the methods using publicly available DARPA datasets. Finally, we found that SPRT is the only one that has the highest accuracy and F score and detect almost all DDoS attacks without producing false positive and false negative.
Bin Wang, Ph.D. (Advisor)
Yong Pei, Ph.D. (Committee Member)
Mateen Rizki, Ph.D. (Committee Member)
95 p.
Computer Engineering
SDN; Controller; DDoS attacks; SPRT; CD; PD; CUSUM; ED

Recommended Citations

Citations

  • Al-Mafrachi, B. H. A. (2017). Detection of DDoS Attacks against the SDN Controller using Statistical Approaches [Master's thesis, Wright State University]. OhioLINK Electronic Theses and Dissertations Center. http://rave.ohiolink.edu/etdc/view?acc_num=wright1513738941473344

    APA Style (7th edition)

  • Al-Mafrachi, Basheer. Detection of DDoS Attacks against the SDN Controller using Statistical Approaches. 2017. Wright State University, Master's thesis. OhioLINK Electronic Theses and Dissertations Center, http://rave.ohiolink.edu/etdc/view?acc_num=wright1513738941473344.

    MLA Style (8th edition)

  • Al-Mafrachi, Basheer. "Detection of DDoS Attacks against the SDN Controller using Statistical Approaches." Master's thesis, Wright State University, 2017. http://rave.ohiolink.edu/etdc/view?acc_num=wright1513738941473344

    Chicago Manual of Style (17th edition)

wright1513738941473344
2,611
© 2017, all rights reserved.
This open access ETD is published by Wright State University and OhioLINK.