Optimizing DDoS Detection in SDNs Through Machine Learning Models

The emergence of Software-Defined Networking (SDN) has changed the network structure by separating the control plane from the data plane. However, this innovation has also increased susceptibility to DDoS attacks. Existing detection techniques are often ineffective due to data imbalance and accuracy...

Full description

Saved in:
Bibliographic Details
Published inProceedings (International Confernce on Computational Intelligence and Communication Networks) pp. 426 - 431
Main Authors Haque, Md. Ehsanul, Hossain, Amran, Alam, Md. Shafiqul, Siam, Ahsan Habib, Rabbi, Sayed Md Fazle, Rahman, Md. Muntasir
Format Conference Proceeding
LanguageEnglish
Published IEEE 22.12.2024
Subjects
Accuracy
Classification tree analysis
Computer crime
DDoS Detection
Denial-of-service attack
Dis-tributed Denial of Service (DDoS)
Ensemble Methods
FusionNet
Machine learning algorithms
Nearest neighbor methods
Network Security
Random forests
Software defined networking
Software-Defined Networks (SDN)
Static VAr compensators
Vectors
Online AccessGet full text
ISSN2472-7555
DOI10.1109/CICN63059.2024.10847458

Cover

Abstract The emergence of Software-Defined Networking (SDN) has changed the network structure by separating the control plane from the data plane. However, this innovation has also increased susceptibility to DDoS attacks. Existing detection techniques are often ineffective due to data imbalance and accuracy issues; thus, a considerable research gap exists regarding DDoS detection methods suitable for SDN contexts. This research attempts to detect DDoS attacks more effectively using machine learning algorithms: RF, SVC, KNN, MLP, and XGB. For this purpose, both balanced and imbalanced datasets have been used to measure the performance of the models in terms of accuracy and AUC. Based on the analysis, we can say that RF and XGB had the perfect score, 1.0000, in the accuracy and AUC, but since XGB ended with the lowest Brier Score which indicates the highest reliability. MLP achieved an accuracy of 99.93%, SVC an accuracy of 97.65% and KNN an accuracy of 97.87%, which was the next best performers after RF and XGB. These results are consistent with the validity of SDNs as a platform for RF and XGB techniques in detecting DDoS attacks and highlights the importance of balanced datasets for improving detection against generative cyber attacks that are continually evolving.
AbstractList The emergence of Software-Defined Networking (SDN) has changed the network structure by separating the control plane from the data plane. However, this innovation has also increased susceptibility to DDoS attacks. Existing detection techniques are often ineffective due to data imbalance and accuracy issues; thus, a considerable research gap exists regarding DDoS detection methods suitable for SDN contexts. This research attempts to detect DDoS attacks more effectively using machine learning algorithms: RF, SVC, KNN, MLP, and XGB. For this purpose, both balanced and imbalanced datasets have been used to measure the performance of the models in terms of accuracy and AUC. Based on the analysis, we can say that RF and XGB had the perfect score, 1.0000, in the accuracy and AUC, but since XGB ended with the lowest Brier Score which indicates the highest reliability. MLP achieved an accuracy of 99.93%, SVC an accuracy of 97.65% and KNN an accuracy of 97.87%, which was the next best performers after RF and XGB. These results are consistent with the validity of SDNs as a platform for RF and XGB techniques in detecting DDoS attacks and highlights the importance of balanced datasets for improving detection against generative cyber attacks that are continually evolving.
Author Rahman, Md. Muntasir
Haque, Md. Ehsanul
Siam, Ahsan Habib
Rabbi, Sayed Md Fazle
Hossain, Amran
Alam, Md. Shafiqul
Author_xml – sequence: 1
  givenname: Md. Ehsanul
  surname: Haque
  fullname: Haque, Md. Ehsanul
  email: ehsanulhaquesohan758@gmail.com
  organization: East West University,Computer Science and Engineering,Dhaka,Bangladesh
– sequence: 2
  givenname: Amran
  surname: Hossain
  fullname: Hossain, Amran
  email: safat3622@gmail.com
  organization: East West University,Computer Science and Engineering,Dhaka,Bangladesh
– sequence: 3
  givenname: Md. Shafiqul
  surname: Alam
  fullname: Alam, Md. Shafiqul
  email: shafiq.14027@gmail.com
  organization: East West University,Computer Science and Engineering,Dhaka,Bangladesh
– sequence: 4
  givenname: Ahsan Habib
  surname: Siam
  fullname: Siam, Ahsan Habib
  email: ahsan.siam365@gmail.com
  organization: East West University,Computer Science and Engineering,Dhaka,Bangladesh
– sequence: 5
  givenname: Sayed Md Fazle
  surname: Rabbi
  fullname: Rabbi, Sayed Md Fazle
  email: sayedfazlerabbi45@gmail.com
  organization: Ahsanullah University of Science and Technology,Electrical and Electronic Engineering,Dhaka,Bangladesh
– sequence: 6
  givenname: Md. Muntasir
  surname: Rahman
  fullname: Rahman, Md. Muntasir
  email: mr.abir444@gmail.com
  organization: East West University,Computer Science and Engineering,Dhaka,Bangladesh
BookMark eNo1j8tOwzAQRQ0CiVLyB0j4B1LGdsZ2llXCo1LaLpp9ldjT1qh1qiQs4OsBAau7OTo695ZdxS4SYw8CZkJA_lgsipVWgPlMgsxmAmxmMrQXLMlNbpUSCCh1dskmMjMyNYh4w5JheAMAoQVaIydsvj6P4RQ-Q9zzsuw2vKSR3Bi6yEPkm3I18PrQd-_7A1827hAi8YqaPv7wy87Tcbhj17vmOFDyt1NWPz_VxWtarV8WxbxKQy7G1DrUO0E7b7xAmXmPba70d6OSWqET0lILrnVWkGpJk_KN9BYaQKO0E6Cm7P5XG4hoe-7Dqek_tv-n1Rd8bExk
ContentType Conference Proceeding
DBID 6IE
6IL
CBEJK
RIE
RIL
DOI 10.1109/CICN63059.2024.10847458
DatabaseName IEEE Electronic Library (IEL) Conference Proceedings
IEEE Xplore POP ALL
IEEE Xplore All Conference Proceedings
IEEE Electronic Library (IEL)
IEEE Proceedings Order Plans (POP All) 1998-Present
DatabaseTitleList
Database_xml – sequence: 1
  dbid: RIE
  name: IEEE Electronic Library (IEL)
  url: https://proxy.k.utb.cz/login?url=https://ieeexplore.ieee.org/
  sourceTypes: Publisher
DeliveryMethod fulltext_linktorsrc
Discipline Computer Science
EISBN 9798331505264
EISSN 2472-7555
EndPage 431
ExternalDocumentID 10847458
Genre orig-research
GroupedDBID 6IE
6IF
6IH
6IK
6IL
6IN
AAJGR
AAWTH
ABLEC
ADZIZ
ALMA_UNASSIGNED_HOLDINGS
BEFXN
BFFAM
BGNUA
BKEBE
BPEOZ
CBEJK
CHZPO
IEGSK
IPLJI
M43
OCL
RIE
RIL
RNS
ID FETCH-LOGICAL-i91t-8c56f1efd7d1524dd5b93631532635c128eb0cbc81e3be6e3da2d80a05736c103
IEDL.DBID RIE
IngestDate Wed Feb 12 06:22:46 EST 2025
IsPeerReviewed false
IsScholarly false
Language English
LinkModel DirectLink
MergedId FETCHMERGED-LOGICAL-i91t-8c56f1efd7d1524dd5b93631532635c128eb0cbc81e3be6e3da2d80a05736c103
PageCount 6
ParticipantIDs ieee_primary_10847458
PublicationCentury 2000
PublicationDate 2024-Dec.-22
PublicationDateYYYYMMDD 2024-12-22
PublicationDate_xml – month: 12
  year: 2024
  text: 2024-Dec.-22
  day: 22
PublicationDecade 2020
PublicationTitle Proceedings (International Confernce on Computational Intelligence and Communication Networks)
PublicationTitleAbbrev CICN
PublicationYear 2024
Publisher IEEE
Publisher_xml – name: IEEE
SSID ssj0001615872
Score 1.9180946
Snippet The emergence of Software-Defined Networking (SDN) has changed the network structure by separating the control plane from the data plane. However, this...
SourceID ieee
SourceType Publisher
StartPage 426
SubjectTerms Accuracy
Classification tree analysis
Computer crime
DDoS Detection
Denial-of-service attack
Dis-tributed Denial of Service (DDoS)
Ensemble Methods
FusionNet
Machine learning algorithms
Nearest neighbor methods
Network Security
Random forests
Software defined networking
Software-Defined Networks (SDN)
Static VAr compensators
Vectors
Title Optimizing DDoS Detection in SDNs Through Machine Learning Models
URI https://ieeexplore.ieee.org/document/10847458
hasFullText 1
inHoldings 1
isFullTextHit
isPrint
link http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwjV1dS8MwFA1uTz7Nj4nf5MHX1nx0bfooq2MKVmET9jaa5EaG2onrXvbrTdLWoSD4VkoLITf3HpKccw9CV4TqwpiUBBFlYDcohgTCwm5ApeSsAE2M8izfPB4_R_ezwawRq3stDAB48hmE7tHf5eulWrujMpvhtpZGA9FBHbvOarHW9kDFYrNIWMPhoiS9Ht4N89iuZ6dHYVHY_v3DR8XDyKiH8nYANXvkNVxXMlSbX70Z_z3CPdTfKvbw0zcW7aMdKA9Qr7VswE0GH6KbR1si3hcb-xHOsuUEZ1B5MlaJFyWeZPkKT2vnHvzgaZaAmw6sL9jZpr2t-mg6up0Ox0HjohAsUloFQg1iQ8HoRFuojrQeyJTH3BY614ZGWXgCSZRUggKXEAPXBdOCFK5RYqwo4UeoWy5LOEaYSaG1MklMjU11qoQyivIi4aKwQdbkBPXdjMw_6j4Z83YyTv94f4Z2XWAcOYSxc9StPtdwYSG-kpc-tF-hjKTZ
linkProvider IEEE
linkToHtml http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwjV1bS8MwGA06H_RpXibezYOvrbn0kj7K6pi6VWEV9jaamwy1E9e97NebpJ1DQfCtlBZCvnzfIck53wHgCmFZaJ0gL8BEmQ2KRh4zsOthzikplERaOJZvFvWfg_txOG7E6k4Lo5Ry5DPl20d3ly9nYmGPykyGm1oahGwTbBngD8JarrU-UjHozGLSsLgwSq67d90sMivaKlJI4K_-_-Gk4oCk1wbZagg1f-TVX1TcF8tf3Rn_PcZd0Flr9uDTNxrtgQ1V7oP2yrQBNjl8AG4eTZF4ny7NRzBNZyOYqsrRsUo4LeEozeYwr7174NARLRVserC-QGuc9jbvgLx3m3f7XuOj4E0TXHlMhJHGSstYGrAOpAx5QiNqSp1tRCMMQCmOBBcMK8pVpKgsiGSosK0SI4ERPQStclaqIwAJZ1IKHUdYm2THggktMC1iygoTZomOQcfOyOSj7pQxWU3GyR_vL8F2Px8OJoO77OEU7NggWaoIIWegVX0u1LkB_IpfuDB_AXYlqCY
openUrl ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Abook&rft.genre=proceeding&rft.title=Proceedings+%28International+Confernce+on+Computational+Intelligence+and+Communication+Networks%29&rft.atitle=Optimizing+DDoS+Detection+in+SDNs+Through+Machine+Learning+Models&rft.au=Haque%2C+Md.+Ehsanul&rft.au=Hossain%2C+Amran&rft.au=Alam%2C+Md.+Shafiqul&rft.au=Siam%2C+Ahsan+Habib&rft.date=2024-12-22&rft.pub=IEEE&rft.eissn=2472-7555&rft.spage=426&rft.epage=431&rft_id=info:doi/10.1109%2FCICN63059.2024.10847458&rft.externalDocID=10847458