Towards prediction of security attacks on software defined networks: A big data analytic approach

dc.contributor.committeeChairHewett, Rattikorn
dc.contributor.committeeMemberSerwadda, Abdul
dc.contributor.committeeMemberMengel, Susan A.
dc.creatorUnal, Emre
dc.creator.orcid0000-0003-0261-165X
dc.date.accessioned2019-11-01T15:11:34Z
dc.date.available2019-11-01T15:11:34Z
dc.date.created2019-08
dc.date.issued2019-08
dc.date.submittedAugust 2019
dc.date.updated2019-11-01T15:11:34Z
dc.description.abstractCyber-physical systems (CPS) tightly integrate physical and computing processes by monitoring and control data interacting between them via underlying networks. Software Defined Network (SDN) Technology has increasingly become essential in many advanced computer networks, including those in modern CPS, to provide flexible and agile network development. Despite many benefits that SDN offers, malicious attacks that can eventually prevent network services are unavoidable. Among the most predominant attacks on SDN controller layer, Link Discovery Attack and ARP (Address Resolution Protocol) Spoofing Attack are fundamental in that they are the gateways of many other SDN threats and attacks. To defend these attacks, most existing techniques either rely on relatively complex data validation techniques or use thresholds that can be subjective and unable to detect more than one type of attacks at a time if one deciding factor is used. While Big data technology, particularly machine learning, has been widely used for intrusion/anomaly detection, little has been done in SDN. This paper explores how well this technology can be used to predict these SDN attacks. By employing typical machine learning algorithms on simulated data of routing in SDN when attacks occur, preliminary results, obtained from four machine learning models, show the average area under ROC curve of over 96% and 92% for sample size 50,970 (12 switches) and 60,000 (20 switches), respectively. Further experiments show near-linear scaling in training time for the best performing algorithm when sample size grows up to 100,000.
dc.format.mimetypeapplication/pdf
dc.identifier.urihttps://hdl.handle.net/2346/85372
dc.language.isoeng
dc.rights.availabilityUnrestricted.
dc.subjectSoftware-defined networking
dc.subjectSDN-specific security
dc.subjectLink discovery attack
dc.subjectARP spoofing attack
dc.subjectMachine learning
dc.subjectData analytic applications
dc.titleTowards prediction of security attacks on software defined networks: A big data analytic approach
dc.typeThesis
dc.type.materialtext
thesis.degree.departmentComputer Science
thesis.degree.disciplineComputer Science
thesis.degree.grantorTexas Tech University
thesis.degree.levelMasters
thesis.degree.nameMaster of Science

Files

Original bundle

Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
UNAL-THESIS-2019.pdf
Size:
599.67 KB
Format:
Adobe Portable Document Format

License bundle

Now showing 1 - 1 of 1
No Thumbnail Available
Name:
LICENSE.txt
Size:
1.84 KB
Format:
Plain Text
Description: