SDN环境中基于Bi-LSTM的DDoS攻击检测方案

计算机工程与科学 ›› 2023, Vol. 45 ›› Issue (02): 277-285.

• 计算机网络与信息安全 • 上一篇下一篇

SDN环境中基于Bi-LSTM的DDoS攻击检测方案

白坚镜，顾瑞春，刘清河

(内蒙古科技大学信息工程学院，内蒙古包头 014010)

收稿日期:2022-03-10 修回日期:2022-05-26 接受日期:2023-02-25 出版日期:2023-02-25 发布日期:2023-02-15
基金资助:
内蒙古自然科学基金(2021LHMS06003)

A DDoS attack detection scheme based on Bi-LSTM in SDN

BAI Jian-jing,GU Rui-chun,LIU Qing-he

(School of Information Engineering,Inner Mongolia University of Science & Technology,Baotou 014010,China)

Received:2022-03-10 Revised:2022-05-26 Accepted:2023-02-25 Online:2023-02-25 Published:2023-02-15

摘要/Abstract

摘要： 针对5G物联网环境中海量接入设备带来的DDoS攻击威胁，同时考虑到软件定义网络SDN对5G物联网的适用性，提出了一种在SDN环境中利用长短期记忆LSTM网络检测DDoS攻击的方案，以提高对DDoS攻击检测的准确性。并采用分治算法思想，提出了一种轻量级分布式边缘计算架构OCM，在物联网中的空闲边缘节点部署基于Bi-LSTM的轻量级神经网络完成检测任务,在保证准确性的同时，增加了检测的灵活性。在ISCX2012数据集上评估了所提方案的有效性和可行性。实验结果表明，所提方案能够准确检测DDoS攻击并有效缓解DDoS攻击。

关键词: SDN, 5G, DDoS, 物联网, 网络安全

Abstract: Aiming at the DDoS attack threat brought by massive access devices in the 5G Internet of Things (IoT) environment, considering the Software Defined Network (SDN) for the applicability of 5G IoT, a DDoS attack detection scheme using Long Short-Term Memory (LSTM) network in SDN environment is proposed, in order to improve the accuracy of DDoS attack detection. Based on the idea of divide-and-conquer algorithm, a lightweight distributed edge computing architecture, called Only Care Myself (OCM), is proposed. A Bi-LSTM based lightweight neural network is deployed on idle edge nodes in IoT to complete the detection task, which increases the flexibility of detection while maintaining the accuracy. The performance index of the proposed scheme was evaluated on the ISCX2012 dataset, and the feasibility of the proposed scheme is verified. Experimental results show that the proposed scheme can accurately detect DDoS attacks and effectively mitigate DDoS attacks.

Key words: software defined network(SDN), 5G, distributed denial of service(DDoS), Internet of Things (IoT), network security

白坚镜, 顾瑞春, 刘清河. SDN环境中基于Bi-LSTM的DDoS攻击检测方案[J]. 计算机工程与科学, 2023, 45(02): 277-285.

BAI Jian-jing, GU Rui-chun, LIU Qing-he. A DDoS attack detection scheme based on Bi-LSTM in SDN[J]. Computer Engineering & Science, 2023, 45(02): 277-285.

参考文献［21］

［1］	Chen Sheng-hua.Discussion on Internet of Things security in 5G［J］.Network Security Technology & Application,2021(8):82-84.(in Chinese)
［2］	Shu Yue-jie.DDoS attack detection mechanism based on deep learning under SDN network architecture［D］.Harbin: Harbin Institute of Technology,2020.(in Chinese)
［3］	Tencent Security,NSFOCUS.Global DDoS threat report in the first half of 2021［R］.Shenzhen:Tencent Security,2021.(in Chinese)
［4］	Cui Y,Qian Q,Guo C,et al.Towards DDoS detection mechanisms in software-defined networking［J］.Journal of Network and Computer Applications,2021,190:103156.
［5］	Fang L W H Q.A comprehensive analysis of DDoS attacks based on DNS［J］.Journal of Physics Conference Series,2021,2024(1):012027.
［6］	Erhan D, Anarim E.Istatistiksel yntemler ile DDoS saldr tespiti DDoS detection using statistical methods［C］∥Proc of the 28th Signal Processing and Communications Applications Conference,2020:1-4.
［7］	Tayfour O E,Marsono M N.Collaborative detection and mitigation of DDoS in software-defined networks［J］.The Journal of Supercomputing,2021,77(11):13166-13190.
［8］	Revathi S,Malathi A.A detailed analysis on NSL-KDD dataset using various machine learning techniques for intrusion detection［J］.International Journal of Engineering Research & Technology,2013,2(12):1848-1853.
［9］	Yu Y,Guo L,Liu Y,et al.An efficient SDN-based DDoS attack detection and rapid response platform in vehicular networks［J］.IEEE Access,2018,6:44570-44579.
［10］	Wang Y,Hu T,Tang G,et al.SGS:Safe-guard scheme for protecting control plane against DDoS attacks in software-defined networking［J］.IEEE Access,2019,7:34699-34710.
［11］	Cui J,Wang M,Luo Y,et al.DDoS detection and defense mechanism based on cognitive-inspired computing in SDN［J］.Future Generation Computer Systems,2019,97(8):275-283.
［12］	Luo Yi-han. Design and implementation of DDoS attack warning system based on LSTM［D］.Haikou:Hainan University,2019.(in Chinese)
［13］	Yang X,Han B,Sun Z,et al．SDN-based DDoS attack detection with crossplane collaboration and light weight flow monitoring［C］∥Proc of 2017 IEEE Global Communications Conference,2017:1-6.
［14］	Nadeem M W,Goh H G,Ponnusamy V,et al.DDoS detection in SDN using machine learning techniques［J］.Computers,Materials & Continua,2022,71(1):771-789.
［15］	Florance G,Anandhi R J.Study on SDN with security issues using Mininet［J］.Recent Trends in Intensive Computing, 2021,39(1):104-113.
［16］	Bhardwaj S,Panda S N.Performance evaluation using RYU SDN controller in software-defined networking environment［J］.Wireless Personal Communications,2022,122(1):701-723.
［17］	Islam M T,Islam N,Refat M A.Node to node performance evaluation through RYU SDN controller［J］.Wireless Personal Communications,2020,112(1)：555-570.
［18］	Shiravi A,Shiravi H,Tavallaee M,et al.Toward developing a systematic approach to generate benchmark datasets for intrusion detection［J］.Computers & Security,2012,31(3):357-374.
［19］	Wan J,Zou C,Zhou K,et al.IoT sensing framework with inter-cloud computing capability in vehicular networking［J］.Electronic Commerce Research,2014,14(3):389-416.
［20］	Gou Ling. Network traffic detection and analysis method based on empirical mode decomposition［D］.Chengdu:University of Electronic Science and Technology of China,2018.(in Chinese)
［21］	Wang Ling-jiao,Lü Cong-xia,Guo Hua.Research on DDoS attack detection based on support vector machine in SDN environment［J］.Journal of Yunnan University（Natural Sciences Edition）,2021,43(1):52-59.(in Chinese)
［22］	Gaur V,Kumar R.Analysis of machine learning classifiers for early detection of DDoS attacks on IoT devices［J］.Arabian Journal for Science and Engineering,2021,46(12):12757-12779.
	附中文参考文献：
［1］	陈胜华.5G时代物联网安全的探讨［J］.网络安全技术与应用,2021(8):82-84.
［2］	束越婕.SDN网络架构下基于深度学习的DDoS攻击检测机制［D］.哈尔滨：哈尔滨工业大学,2020.
［3］	腾讯安全，绿盟科技.2021上半年全球DDoS威胁报告［R］.深圳:腾讯科技，2021.
［12］	罗逸涵.基于LSTM的DDoS攻击预警系统的设计与实现［D］.海口：海南大学,2019.
［20］	苟玲.基于经验模态分解的网络流量检测与分析方法［D］.成都：电子科技大学,2018.
［21］	王灵矫,吕琮霞,郭华.SDN环境下基于支持向量机的DDoS攻击检测研究［J］.云南大学学报(自然科学版),2021,43(1):52-59.

[1]	夏戈明, 虞朝栋, 陈健. 边缘计算中的信任问题：挑战与评论[J]. 计算机工程与科学, 2023, 45(08): 1393-1404.
[2]	寇广岳, 魏国珩, 平源, 刘鹏. RFID安全认证协议综述[J]. 计算机工程与科学, 2023, 45(01): 77-84.
[3]	曹守启, 何鑫, 刘婉荣. 一种改进的远程用户身份认证方案[J]. 计算机工程与科学, 2021, 43(11): 1960-1965.
[4]	聂雷, 刘博, 李鹏, 何亨, . 基于多智能体Q学习的异构车载网络选择方法[J]. 计算机工程与科学, 2021, 43(05): 836-844.
[5]	季子豪, 江凌云. 一种基于遗传算法的多站点协同计算卸载算法[J]. 计算机工程与科学, 2021, 43(03): 426-434.
[6]	孙佳浩, 汪诚诚, 唐道鲜, 李跃华. 6LoWPAN网络组播通信方案的研究与设计[J]. 计算机工程与科学, 2021, 43(02): 288-294.
[7]	谢峰. 5G网络下基于虚拟现实技术沉浸式课堂教学的应用与研究[J]. 计算机工程与科学, 2019, 41(增刊S1): 14-17.
[8]	张晨1，唐湘滟1,2，程杰仁1,2,3，董哲1，李俊麒1. 基于多核学习的自适应DDoS攻击检测方法[J]. 计算机工程与科学, 2019, 41(08): 1381-1389.
[9]	李永飞1，郭晓欣1，田立勤1,2. 基于聚类的物联网监测点相邻关系的判定与分析[J]. 计算机工程与科学, 2019, 41(07): 1291-1296.
[10]	刘橴默，邱宗迪，贾甜远，徐远超. 非易失处理器安全备份机制研究[J]. 计算机工程与科学, 2019, 41(01): 41-46.
[11]	陈颖文1，钟萍2，逄德明1. 以能力为导向浅谈物联网工程专业人才的培养[J]. 计算机工程与科学, 2018, 40(增刊S1): 124-127.
[12]	李颖智1,肖来元2. 基于情境感知技术的智慧城市服务系统研究[J]. J4, 2016, 38(03): 443-448.
[13]	谢军1,2，马辉2，李秀2. 海底观测网中上位机与服务器通信协议的设计[J]. J4, 2015, 37(09): 1656-1660.
[14]	蔡婷1，陈昌志1，欧阳凯2，周敬利2. 改进的物联网感知层访问控制策略[J]. J4, 2015, 37(07): 1265-1271.
[15]	段梦琴，李仁发，黄晶. 融合关联性的多任务压缩感知行为识别方法[J]. J4, 2015, 37(06): 1071-1078.

SDN环境中基于Bi-LSTM的DDoS攻击检测方案

A DDoS attack detection scheme based on Bi-LSTM in SDN

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献［21］

相关文章 15

编辑推荐

Metrics

本文评价

SDN环境中基于Bi-LSTM的DDoS攻击检测方案

A DDoS attack detection scheme based on Bi-LSTM in SDN

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献 ［21］

相关文章 15

编辑推荐

Metrics

本文评价

参考文献［21］