International Journal on Advanced Science, Engineering and Information Technology, Vol. 8 (2018) No. 2, DOI:10.18517/ijaseit.8.2.5036

Improving DDoS Detection accuracy using Six-Sigma in SDN Environment

Achmad Khalif Hakim, Maman Abdurohman, Fazmah Arif Yulianto

Abstract

This paper proposes the new method for improving the accuracy of detection of DDoS attacks on the SDN by utilizing control plane using Six-Sigma method. Software-Defined Networking (SDN) is a centralized network control system. This system offers flexibility on receiving, processing and forwarding packets between sub networks. The centralized system of SDN, which separates control plane and data plan, has an immense number of advantages, but it also has the risk of becoming a single point of network failure. Distributed Denial of Service (DDoS) attack is the major issues faced in the security aspect of SDN. This attack can make network resources unreachable by the true packets. The widely known method has been implemented on SDN for avoiding DDoS attack is Three-Sigma method. Three-Sigma method uses threshold value to determine the existence of DDoS attack. However, this method has drawbacks in terms of accuracy in determining the DDoS attack. Main contribution of this paper is utilizing central control plane of SDN for improving accuracy on detecting DDoS attack. Several experiments have been performed for proving the concept. The result shows the new method can improve the accuracy of detection of DDoS attack, either in constant or fluctuating traffic, by reducing the false positive. The performance is about 50% more accurate than the previous method.

Keywords:

Software-Defined Networking (SDN); Distributed Denial of Service (DDoS); Three-Sigma; Six-Sigma.

Viewed: 24 times (since Sept 4, 2017)

cite this paper