Back to Search
Start Over
Examining the Security of DDoS Detection Systems in Software Defined Networks
- Source :
- CoNEXT Companion
- Publication Year :
- 2019
- Publisher :
- ACM, 2019.
-
Abstract
- With the rapid development of Software-Defined Networking (SDN) advocating a centralized view of networks, efficient and reliable Distributed Denial of Service (DDoS) defenses are necessary to protect the centralized SDN controller. In this work, we explore the robustness of DL-based DDoS defenses in SDN against adversarial learning attacks. First, we investigate generic off-the-shelf adversarial attacks to test the robustness of DDoS defenses in SDN. Then, we propose Flow-Merge for realistic adversarial flows while achieving a high evasion rate. The evaluation shows that the proposed Flow-Merge is able to force the DL-based DDoS defenses to misclassify 100% of benign flows as malicious.
- Subjects :
- Computer science
business.industry
Deep learning
ComputerSystemsOrganization_COMPUTER-COMMUNICATIONNETWORKS
Denial-of-service attack
Intrusion detection system
Computer security
computer.software_genre
ComputingMilieux_MANAGEMENTOFCOMPUTINGANDINFORMATIONSYSTEMS
Adversarial system
Robustness (computer science)
Artificial intelligence
Software-defined networking
business
computer
Subjects
Details
- Database :
- OpenAIRE
- Journal :
- Proceedings of the 15th International Conference on emerging Networking EXperiments and Technologies
- Accession number :
- edsair.doi...........0bffa75a38447aa6b51dc0988b247a3a
- Full Text :
- https://doi.org/10.1145/3360468.3368174