BishtRef
Articles Journals Publishers Authors Subjects Most Cited New Papers Year Stats Open Access
journal article Open Access Apr 05, 2023

An Adversarial DBN-LSTM Method for Detecting and Defending against DDoS Attacks in SDN Environments

Lei Chen ORCID Ru Huo Tao Huang ORCID
Algorithms Vol. 16 No. 4 pp. 197 · MDPI AG
View at Publisher Save 10.3390/a16040197
Abstract
As an essential piece of infrastructure supporting cyberspace security technology verification, network weapons and equipment testing, attack defense confrontation drills, and network risk assessment, Cyber Range is exceptionally vulnerable to distributed denial of service (DDoS) attacks from three malicious parties. Moreover, some attackers try to fool the classification/prediction mechanism by crafting the input data to create adversarial attacks, which is hard to defend for ML-based Network Intrusion Detection Systems (NIDSs). This paper proposes an adversarial DBN-LSTM method for detecting and defending against DDoS attacks in SDN environments, which applies generative adversarial networks (GAN) as well as deep belief networks and long short-term memory (DBN-LSTM) to make the system less sensitive to adversarial attacks and faster feature extraction. We conducted the experiments using the public dataset CICDDoS 2019. The experimental results demonstrated that our method efficiently detected up-to-date common types of DDoS attacks compared to other approaches.
Topics

No keywords indexed for this article. Browse by subject →

References
24
[1]
Mudassar "Cyber ranges and security testbeds: Scenarios, functions, tools and architecture" Comput. Secur. (2020) 10.1016/j.cose.2019.101636
[2]
Hu, D., Hong, P., and Chen, Y. (2017, January 4–8). Fadm: Ddos flooding attack detection and mitigation system in software-defined networking. Proceedings of the 2017 IEEE Global Communications Conference, Singapore. 10.1109/glocom.2017.8254023
[3]
Abubakar, A., and Pranggono, B. (2017, January 6-8). Machine learning based intrusion detection system for software defined networks. Proceedings of the Seventh International Conference on Emerging Security Technologies (EST), Canterbury, UK. 10.1109/est.2017.8090413
[4]
Niyaz, Q., Sun, W., and Javaid, A.Y. (2016). A deep learning based ddos detection system in software-defined networking (SDN). arXiv. 10.4108/eai.28-12-2017.153515
[5]
Khamaiseh, S., Serra, E., and Xu, D. (2020, January 13–17). vswitchguard: Defending openflow switches against saturation attacks. Proceedings of the IEEE Computer Society Signature Conference on Computers Software and Applications (COMPSAC), Madrid, Spain. 10.1109/compsac48688.2020.0-157
[6]
Shieh, C.S., Nguyen, T.T., Lin, W.W., Lai, W.K., Horng, M.F., and Miu, D. (2022). Detection of Adversarial DDoS Attacks Using Symmetric Defense Generative Adversarial Networks. Electronics, 11. 10.3390/electronics11131977
[7]
Jiang "FGMD: A robust detector against adversarial attacks in the IoT network" Future Gener. Comput. Syst. (2022) 10.1016/j.future.2022.02.019
[8]
Nguyen, T.N. (2018, January 24-26). The challenges in ml-based security for SDN. Proceedings of the 2018 2nd Cyber Security in Networking Conference (CSNet), Paris, France. 10.1109/csnet.2018.8602680
[9]
Papernot, N., McDaniel, P., Jha, S., Fredrikson, M., Celik, Z.B., and Swami, A. (2016, January 21–24). The limitations of deep learning in adversarial settings. Proceedings of the 2016 IEEE European symposium on security and privacy (EuroS&P), Saarbrucken, Germany. 10.1109/eurosp.2016.36
[10]
Khamaiseh, S.Y., Alsmadi, I., and Al-Alai, A. (2020, January 14–16). Deceiving Machine Learning-Based Saturation Attack Detection Systems in SDN. Proceedings of the 2020 IEEE Conference on Network Function Virtualization and Software Defined Networks (NFV-SDN), Chandler, AZ, USA. 10.1109/nfv-sdn50289.2020.9289908
[11]
Madry, A., Makelov, A., Schmidt, L., Tsipras, D., and Vladu, A. (2019). Towards deep learning models resistant to adversarial attacks. arXiv.
[12]
Ujjan "Towards sFlow and adaptive polling sampling for deep learning based DDoS detection in SDN" Future Gener. Comput. Syst. (2021)
[13]
Zainudin, A., Ahakonye, L.A.C., Akter, R., Kim, D.-S., and Lee, J.-M. (2022). An Efficient Hybrid-DNN for DDoS Detection and Classification in Software-Defined IIoT Networks. IEEE Internet Things J. 10.1109/jiot.2022.3196942
[14]
Javeed "Cyber Threats Detection in Smart Environments Using SDN-Enabled DNN-LSTM Hybrid Framework" IEEE Access (2022) 10.1109/access.2022.3172304
[15]
Novaes "Adversarial Deep Learning approach detection and defense against DDoS attacks in SDN environments" Future Gener. Comput. Syst. (2021) 10.1016/j.future.2021.06.047
[16]
Alghazzawi, D., Bamasag, O., Ullah, H., and Asghar, M.Z. (2021). Efficient detection of DDoS attacks using a hybrid deep learning model with improved feature selection. Appl. Sci., 11. 10.3390/app112411634
[17]
A GRU deep learning system against attacks in software defined networks

Marcos V.O. Assis, Luiz Fernando Carvalho, Jaime Lloret et al.

Journal of Network and Computer Applications 2021 10.1016/j.jnca.2020.102942
[18]
Javeed, D., Gao, T., and Khan, M.T. (2021). SDN-enabled hybrid DL-driven framework for the detection of emerging cyber threats in IoT. Electronics, 10. 10.3390/electronics10080918
[19]
Saini, P.S., Behal, S., and Bhatia, S. (2020, January 12–14). Detection of DDoS attacks using machine learning algorithms. Proceedings of the 2020 7th International Conference on Computing for Sustainable Global Development (INDIACom), New Delhi, India. 10.23919/indiacom49435.2020.9083716
[20]
Carvalho "An ecosystem for anomaly detection and mitigation in software-defined networking" Expert Syst. Appl. (2018) 10.1016/j.eswa.2018.03.027
[21]
Mittal, M., Kumar, K., and Behal, S. (2022). Deep learning approaches for detecting DDoS attacks: A systematic review. Soft Comput., 1–37. 10.1007/s00500-021-06608-1
[22]
Carvalho "Near realtime security system applied to SDN environments in IoT networks using convolutional neural network" Comput. Electr. Eng. (2020) 10.1016/j.compeleceng.2020.106738
[23]
Priyadarshini "A deep learning based intelligent framework to mitigate DDoS attack in fog environment" J. King Saud Univ.-Comput. Inf. Sci. (2022)
[24]
Wang "A dynamic MLP-based DDoS attack detection method using feature selection and feedback" Comput. Secur. (2020) 10.1016/j.cose.2019.101645
Metrics
34
Citations
24
References
Details
Published
Apr 05, 2023
Vol/Issue
16(4)
Pages
197
License
View
Authors
L
Lei Chen

College of Compute, National University of Defense Technology, Changsha 410073, China; Center for Strategic Studies, Chinese Academy of Engineering, Beijing 100088, China

R
Ru Huo

Purple Mountain Laboratories, Nanjing 211111, China; Faculty of Information Technology, Beijing University of Technology, Beijing 100124, China

T
Tao Huang

The State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China

Funding
National Key R&D Program of China Award: 2019YFB1804403
Cite This Article
Lei Chen, Ru Huo, Tao Huang (2023). An Adversarial DBN-LSTM Method for Detecting and Defending against DDoS Attacks in SDN Environments. Algorithms, 16(4), 197. https://doi.org/10.3390/a16040197
Related

You May Also Like

From the Quantum Approximate Optimization Algorithm to a Quantum Alternating Operator Ansatz

Stuart Hadfield, Zhihui Wang · 2019

624 citations

An Efficient Algorithm for Automatic Peak Detection in Noisy Periodic and Quasi-Periodic Signals

Felix Scholkmann, Jens Boss · 2012

381 citations

The NIRS Brain AnalyzIR Toolbox

Hendrik Santosa, Xuetong Zhai · 2018

378 citations

A Review of Modern Audio Deepfake Detection Methods: Challenges and Future Directions

Zaynab M. Almutairi, Hebah Elgibreen · 2022

149 citations

Pareto Optimization or Cascaded Weighted Sum: A Comparison of Concepts

Wilfried Jakob, Christian Blume · 2014

102 citations