Detecção de Ataques DDoS em Redes SDN Utilizando Aprendizado de Máquina: Uma Abordagem em Microsserviços
Abstract
Even today, security remains a critical challenge in Software Defined Networks (SDN), including threats such as Distributed Denial of Service (DDoS) attacks. In this scenario, the use of machine learning holds promise for detecting and mitigating such attacks, where not only the model’s performance must be considered, but also its impact on the network controller’s performance. This study proposes a microservices-based approach, evaluating five machine learning models for detection. The results identified Random Forest as the most effective with an F1-Score of 98.65%. Furthermore, the microservices approach enabled the use of more complex models without compromising the performance of the SDN controller.
References
Aslam, N., Srivastava, S., and Gore, M. (2022). Onos flood defender: An intelligent approach to mitigate ddos attack in sdn. Transactions on Emerging Telecommunications Technologies, 33.
Dayal, N., Maity, P., Srivastava, S., and Khondoker, R. (2017). Research trends in security and ddos in sdn. Security and Communication Networks, 9.
Dias, V. (2023a). Repositório Docker Victor GERCOM. [link].
Dias, V. (2023b). Repositório Victor GERCOM. [link].
Francesco, P. D., Malavolta, I., and Lago, P. (2017). Research on architecting microservices: Trends, focus, and potential for industrial adoption. In 2017 IEEE International Conference on Software Architecture (ICSA), pages 21–30.
Gómez Macías, S. (2020). Sistema de detección de ataques de ddos basado en modelos de aprendizaje de máquina para la arquitectura sdn. Master’s thesis. Disponível em: [link].
Macías, S. G., Gaspary, L. P., and Botero, J. F. (2021). Oracle: An architecture for collaboration of data and control planes to detect ddos attacks. In 2021 IFIP/IEEE International Symposium on Integrated Network Management (IM), pages 962–967. IEEE.
SEBITAS (2021). ORACLE_ddos. [link]. Acesso em: 01/04/2023.
Sharafaldin, I., Habibi Lashkari, A., and Ghorbani, A. A. (2018). Toward generating a new intrusion detection dataset and intrusion traffic characterization. Proceedings of the 4th International Conference on Information Systems Security and Privacy.
Singh, A. K., Jaiswal, R. K., Abdukodir, K., and Muthanna, A. (2020). Ardefense: Ddos detection and prevention using nfv and sdn. In 2020 12th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT), pages 236–241.
Sudar, K., Beulah, M., Deepalakshmi, P., Nagaraj, P., and Chinnasamy, P. (2021). Detection of distributed denial of service attacks in sdn using machine learning techniques. In 2021 International Conference on Computer Communication and Informatics (ICCCI), pages 1–5.
Dayal, N., Maity, P., Srivastava, S., and Khondoker, R. (2017). Research trends in security and ddos in sdn. Security and Communication Networks, 9.
Dias, V. (2023a). Repositório Docker Victor GERCOM. [link].
Dias, V. (2023b). Repositório Victor GERCOM. [link].
Francesco, P. D., Malavolta, I., and Lago, P. (2017). Research on architecting microservices: Trends, focus, and potential for industrial adoption. In 2017 IEEE International Conference on Software Architecture (ICSA), pages 21–30.
Gómez Macías, S. (2020). Sistema de detección de ataques de ddos basado en modelos de aprendizaje de máquina para la arquitectura sdn. Master’s thesis. Disponível em: [link].
Macías, S. G., Gaspary, L. P., and Botero, J. F. (2021). Oracle: An architecture for collaboration of data and control planes to detect ddos attacks. In 2021 IFIP/IEEE International Symposium on Integrated Network Management (IM), pages 962–967. IEEE.
SEBITAS (2021). ORACLE_ddos. [link]. Acesso em: 01/04/2023.
Sharafaldin, I., Habibi Lashkari, A., and Ghorbani, A. A. (2018). Toward generating a new intrusion detection dataset and intrusion traffic characterization. Proceedings of the 4th International Conference on Information Systems Security and Privacy.
Singh, A. K., Jaiswal, R. K., Abdukodir, K., and Muthanna, A. (2020). Ardefense: Ddos detection and prevention using nfv and sdn. In 2020 12th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT), pages 236–241.
Sudar, K., Beulah, M., Deepalakshmi, P., Nagaraj, P., and Chinnasamy, P. (2021). Detection of distributed denial of service attacks in sdn using machine learning techniques. In 2021 International Conference on Computer Communication and Informatics (ICCCI), pages 1–5.
Published
2023-09-18
How to Cite
DIAS, Victor; SILVA, Murilo; GOMES, Matheus; OLIVEIRA, Lucas B.; ABREU, Diego; FERREIRA, João; ABELÉM, Antônio.
Detecção de Ataques DDoS em Redes SDN Utilizando Aprendizado de Máquina: Uma Abordagem em Microsserviços. In: WORKSHOP ON SCIENTIFIC INITIATION AND UNDERGRADUATE WORKS - BRAZILIAN SYMPOSIUM ON CYBERSECURITY (SBSEG), 23. , 2023, Juiz de Fora/MG.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2023
.
p. 141-152.
DOI: https://doi.org/10.5753/sbseg_estendido.2023.234287.
