Automated Controller Placement for Software-Defined Networks to Resist DDoS Attacks

Citation

Haque, Muhammad Reazul and Tan, Saw Chin and Yusoff, Zulfadzli and Nisar, Kashif and Lee, Ching Kwang and Kaspin, Rizaludin and Shankar Chowdhry, Bhawani and Buyya, Rajkumar and Prasad Majumder, Satya and Gupta, Manoj and Memon, Shuaib (2021) Automated Controller Placement for Software-Defined Networks to Resist DDoS Attacks. Computers, Materials & Continua, 68 (3). pp. 3147-3165. ISSN 1546-2226

[img] Text
Automated controller placement for software-defined....pdf
Restricted to Repository staff only

Download (737kB)

Abstract

In software-defined networks (SDNs), controller placement is a critical factor in the design and planning for the future Internet of Things (IoT), telecommunication, and satellite communication systems. Existing research has concentrated largely on factors such as reliability, latency, controller capacity, propagation delay, and energy consumption. However, SDNs are vulnerable to distributed denial of service (DDoS) attacks that interfere with legitimate use of the network. The ever-increasing frequency of DDoS attacks has made it necessary to consider them in network design, especially in critical applications such as military, health care, and financial services networks requiring high availability. We propose a mathematical model for planning the deployment of SDN smart backup controllers (SBCs) to preserve service in the presence of DDoS attacks. Given a number of input parameters, our model has two distinct capabilities. First, it determines the optimal number of primary controllers to place at specific locations or nodes under normal operating conditions. Second, it recommends an optimal number of smart backup controllers for use with different levels of DDoS attacks. The goal of the model is to improve resistance to DDoS attacks while optimizing the overall cost based on the parameters. Our simulated results demonstrate that the model is useful in planning for SDN reliability in the presence of DDoS attacks while managing the overall cost.

Item Type: Article
Uncontrolled Keywords: Software-defined networks (Computer network technology)
Subjects: T Technology > TK Electrical engineering. Electronics Nuclear engineering > TK5101-6720 Telecommunication. Including telegraphy, telephone, radio, radar, television
Divisions: Faculty of Computing and Informatics (FCI)
Faculty of Engineering (FOE)
Depositing User: Ms Nurul Iqtiani Ahmad
Date Deposited: 30 Jun 2021 07:56
Last Modified: 30 Jun 2021 07:56
URII: http://shdl.mmu.edu.my/id/eprint/8768

Downloads

Downloads per month over past year

View ItemEdit (login required)