Automatic DDoS Attack Detection on SDNs: Preprint
Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks pose a serious threat to computing networks - especially to critical systems within the U.S. electrical grid. As attack mechanisms have increased in complexity and variety, more sophisticated detection mechanisms have become necessary to ensure network security. This paper explores the use of artificial intelligence to automate the process of detection and mitigation of DoS and DDoS attacks within the framework of Software-Defined Networking (SDN), to a high degree. Machine learning algorithms are trained to recognize DoS and DDoS attacks and are deployed in real-time to mitigate malicious network traffic. The results show a well-tuned gradient-boosted decision tree detecting DoS and DDoS attacks, as well as initial successful mitigation of attacks within an SDN framework.
- Research Organization:
- National Renewable Energy Laboratory (NREL), Golden, CO (United States)
- Sponsoring Organization:
- USDOE Office of Science (SC), Office of Workforce Development for Teachers and Scientists (WDTS), Science Undergraduate Laboratory Internships Program (SULI)
- DOE Contract Number:
- AC36-08GO28308
- OSTI ID:
- 1890731
- Report Number(s):
- NREL/CP-2C00-81041; MainId:79817; UUID:f5271140-734d-429a-803a-1272b5f8c305; MainAdminID:65305
- Country of Publication:
- United States
- Language:
- English
Similar Records
Autonomous Cyber Defense Against Dynamic Multi-strategy Infrastructural DDoS Attacks
Distributed Denial of Service Tools, Trin00, Tribe Flood Network, Tribe Flood Network 2000 and Stacheldraht.