NGS: Mitigating DDoS Attacks using SDN-based Network Gate Shield

Mohamad Suhel Dalati, Weizhi Meng, Wei-Yang Chiu

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

Abstract

The Internet of Things (IoT) implements a tremendous environment of extensive data streams, whereby any suspicious activities should be detected to safeguard systems' reliability and availability. Distributed Denial of Service (DDoS) attack is a major threat on computer networks, in which an attacker can send huge traffic with multiple IP addresses or machines. In this work, we focus on detecting DDoS attacks, and design Network Gate Shield (NGS), a tool that works on SDN architecture based on the RYU controller. It can examine the traffic trustworthiness, and then determine whether the current traffic is normal based on packet specification, such as the average packet size and the packet per-sec threshold. In the evaluation with an emulated environment, our experimental results indicate that NGS is viable and effective in mitigating DDoS traffic compared with several similar detection approaches.
Original languageEnglish
Title of host publicationProceedings of 2021 IEEE Global Communications Conference
Number of pages6
PublisherIEEE
Publication date2021
Pages1-6
ISBN (Print)978-1-7281-8105-9
DOIs
Publication statusPublished - 2021
Event2021 IEEE Global Communications Conference - Madrid, Spain
Duration: 7 Dec 202111 Dec 2021
https://globecom2021.ieee-globecom.org/

Conference

Conference2021 IEEE Global Communications Conference
Country/TerritorySpain
CityMadrid
Period07/12/202111/12/2021
Internet address

Keywords

  • Software Defined Networking
  • Network Gate Shield
  • RYU Controller
  • Internet of Things
  • DDoS

Fingerprint

Dive into the research topics of 'NGS: Mitigating DDoS Attacks using SDN-based Network Gate Shield'. Together they form a unique fingerprint.

Cite this