Entropy Based Features Distribution for Anti-DDoS Model in SDN
Journal article
Raja Majid Ali Ujjan, Zeeshan Pervez, Keshav Dahal, Wajahat Ali Khan, Asad Masood Khattak and Bashir Hayat 2021. Entropy Based Features Distribution for Anti-DDoS Model in SDN. Sustainability. 13 (3), pp. 1-27. https://doi.org/10.3390/su13031522
| Authors | Raja Majid Ali Ujjan, Zeeshan Pervez, Keshav Dahal, Wajahat Ali Khan, Asad Masood Khattak and Bashir Hayat |
|---|---|
| Abstract | In modern network infrastructure, Distributed Denial of Service (DDoS) attacks are considered as severe network security threats. For conventional network security tools it is extremely difficult to distinguish between the higher traffic volume of a DDoS attack and large number of legitimate users accessing a targeted network service or a resource. Although these attacks have been widely studied, there are few works which collect and analyse truly representative characteristics of DDoS traffic. The current research mostly focuses on DDoS detection and mitigation with predefined DDoS data-sets which are often hard to generalise for various network services and legitimate users’ traffic patterns. In order to deal with considerably large DDoS traffic flow in a Software Defined Networking (SDN), in this work we proposed a fast and an effective entropy-based DDoS detection. We deployed generalised entropy calculation by combining Shannon and Renyi entropy to identify distributed features of DDoS traffic—it also helped SDN controller to effectively deal with heavy malicious traffic. To lower down the network traffic overhead, we collected data-plane traffic with signature-based Snort detection. We then analysed the collected traffic for entropy-based features to improve the detection accuracy of deep learning models: Stacked Auto Encoder (SAE) and Convolutional Neural Network (CNN). This work also investigated the trade-off between SAE and CNN classifiers by using accuracy and false-positive results. Quantitative results demonstrated SAE achieved relatively higher detection accuracy of 94% with only 6% of false-positive alerts, whereas the CNN classifier achieved an average accuracy of 93%. |
| Keywords | distributed denial of service (DDoS); software defined network (SDN); entropy ; intrusion detection system |
| Year | 2021 |
| Journal | Sustainability |
| Journal citation | 13 (3), pp. 1-27 |
| Publisher | MDPI |
| ISSN | 2071-1050 |
| Digital Object Identifier (DOI) | https://doi.org/10.3390/su13031522 |
| Web address (URL) | https://doi.org/10.3390/su13031522 |
| Output status | Published |
| Publication dates | 01 Feb 2021 |
| Publication process dates | |
| Deposited | 24 Apr 2023 |
Permalink -
https://repository.derby.ac.uk/item/9y465/entropy-based-features-distribution-for-anti-ddos-model-in-sdn
114
total views0
total downloads3
views this month0
downloads this month
Export as
Related outputs
Optimizing Aerospace Product Maintenance A Novel Multi-Modal Knowledge Graph and LLM Approach for Enhanced Decision Support
Awill, R., Khan, W., Hussain, M. and Anderson, B. 2024. Optimizing Aerospace Product Maintenance A Novel Multi-Modal Knowledge Graph and LLM Approach for Enhanced Decision Support. The Extended Semantic Web Conference 2024: Fabrics of Knowledge: Knowledge Graphs and Generative AI. The Extended Semantic Web .A unified graph model based on molecular data binning for disease subtyping
Hassan Zada, M., Yuan, B, Khan, W., Anjum, A., Reiff-Marganiec, S. and Saleem, R. 2022. A unified graph model based on molecular data binning for disease subtyping. Journal of Biomedical Informatics. pp. 1-24. https://doi.org/10.1016/j.jbi.2022.104187
Large-scale Data Integration Using Graph Probabilistic Dependencies (GPDs)
Zada, Muhammad Sadiq Hassan, Yuan, Bo, Anjum, Ashiq, Azad, Muhammad Ajmal, Khan, Wajahat Ali and Reiff-Marganiec, Stephan 2020. Large-scale Data Integration Using Graph Probabilistic Dependencies (GPDs). IEEE. https://doi.org/10.1109/bdcat50828.2020.00028Tweets classification and sentiment analysis for personalized tweets recommendation
Batool, Rabia, Satti, Fahad Ahmed, Hussain, Jamil, Khan, Wajahat Ali, Khan, Adil Mehmood and Hayat, Bashir 2020. Tweets classification and sentiment analysis for personalized tweets recommendation. Complexity in Deep Neural Networks. 2020. https://doi.org/10.1155/2020/8892552Ubiquitous health profile (UHPr): a big data curation platform for supporting health data interoperability
Satti, Fahad Ahmed, Ali, Taqdir, Hussain, Jamil, Khan, Wajahat Ali, Khattak, Asad Masood and Lee, Sungyoung 2020. Ubiquitous health profile (UHPr): a big data curation platform for supporting health data interoperability. Computing. https://doi.org/10.1007/s00607-020-00837-2Data-driven knowledge acquisition, validation, and transformation into HL7 Arden Syntax
Hussain, Maqbool, Afzal, Muhammad, Ali, Taqdir, Ali, Rahman, Khan, Wajahat Ali, Jamshed, Arif, Lee, Sungyoung, Kang, Byeong Ho and Latif, Khalid 2015. Data-driven knowledge acquisition, validation, and transformation into HL7 Arden Syntax. Artificial Intelligence in Medicine. 92, pp. 51-70. https://doi.org/10.1016/j.artmed.2015.09.008The mining minds digital health and wellness framework
Banos, Oresti, Bilal Amin, Muhammad, Khan, Wajahat Ali, Afzal, Muhammad, Hussain, Maqbool, Kang, Byeong Ho and Lee, Sungyong 2016. The mining minds digital health and wellness framework. BioMedical Engineering OnLine. 15 (S1). https://doi.org/10.1186/s12938-016-0179-9Multi-model-based interactive authoring environment for creating shareable medical knowledge
Ali, Taqdir, Hussain, Maqbool, Khan, Wajahat Ali, Afzal, Muhammad, Hussain, Jamil, Ali, Rahman, Hassan, Waseem, Jamshed, Arif, Kang, Byeong Ho and Lee, Sungyoung 2017. Multi-model-based interactive authoring environment for creating shareable medical knowledge. Computer Methods and Programs in Biomedicine. 150, pp. 41-72. https://doi.org/10.1016/j.cmpb.2017.07.010An adaptive semantic based mediation system for data interoperability among health information systems
Khan, Wajahat Ali, Khattak, Asad Masood, Hussain, Maqbool, Amin, Muhammad Bilal, Afzal, Muhammad, Nugent, Christopher and Lee, Sungyoung 2014. An adaptive semantic based mediation system for data interoperability among health information systems. Journal of Medical Systems. 38 (8). https://doi.org/10.1007/s10916-014-0028-yMapping evolution of dynamic web ontologies
Khattak, A.M., Pervez, Z., Khan, Wajahat Ali, Khan, A.M., Latif, K. and Lee, S.Y. 2015. Mapping evolution of dynamic web ontologies. Information Sciences. 303, pp. 101-119. https://doi.org/10.1016/j.ins.2014.12.040The intelligent medical platform: a novel dialogue-based platform for health-care services
Taqdir Ali, Jamil Hussain, Muhammad Bilal Amin, Musarrat Hussain, Usman Akhtar, Wajahat Ali Khan, Sungyoung Lee, Byeong Ho Kang, Maqbool Hussain, Muhammad Afzal, Hyeong Won Yu, Ubaid Ur Rehman, Ho-Seong Han, June Young Choi and Arif Jamshed The intelligent medical platform: a novel dialogue-based platform for health-care services. Computer. https://doi.org/10.1109/mc.2019.2924393Exploring the dominant features of social media for depression detection
Hussain, J., Satti, F.A., Afzal, M., Khan, W.A., Bilal, H.S.M., Ansaar, M.Z., Ahmad, H.F., Hur, T., Bang, J., Kim, J.-I., Park, G.H., Seung, H., Lee, S. and Khan, W. Exploring the dominant features of social media for depression detection. Journal of Information Science. https://doi.org/10.1177/0165551519860469