DeMi: a Solution to Detect and Mitigate DoS Attacks in SDN

Software-defined networking (SDN) is becoming more and popular due to its key features of scalability flexibility, simplifying network management enabling innovations in the architecture protocols. In SDNs, most crucial part controller, tasked with managing entire configuring routes. Given critical role, a failure or problem occurring at controller may degrade even collapse SDN. A typical threat controllers are subject Denial Service (DoS) attack. To cope above-introduced threat, this paper we propose lightweight DoS attack detection mitigation method (DeMi) as well heavy-load module. The proposed solution for leverages sample entropy approach coupled an adaptive dynamic threshold considering exponentially weighted moving average (EWMA); based on proof work (PoW) combined flow rule installations; and, implements scheduling SDN controller. Results staggering: instance, when DeMi deployed, scenario number exchanged control packets roughly similar attack-free scenario—without DeMi, 2,7 times than what experienced setting. As per re-transmitted packets, again, able achieve re-transmission rate that need be 3,7 scenario. Moreover, does not block legitimate traffic, contrary other solutions literature. novelty approach, demonstrated complete end-to-end solution, quality achieved experimental results, being interesting their own, do pave way further research field.