Q-learning based distributed denial of service detection
نویسندگان
چکیده
<span lang="EN-US">Distributed denial of service (DDoS) attacks the target providers by sending a huge amount traffic to prevent legitimate users from getting service. These become more challenging in software-defined network paradigm, due separation control plane data plane. Centralized software defined networks are vulnerable DDoS that may cause failure all networks. In this work, new approach is proposed based on q-learning enhance detection and reduce false positives negatives. The results work compared with entropy terms number received packets detect attack also continuity for users. Moreover, these indicate system detects flash crowds redirects edge center. A second controller used redirect honeypot server works as mirror server. This guarantees both normal suspected until further analysis done. an increase up 50% throughput other approaches.</span>
منابع مشابه
HF-Blocker: Detection of Distributed Denial of Service Attacks Based On Botnets
Abstract—Today, botnets have become a serious threat to enterprise networks. By creation of network of bots, they launch several attacks, distributed denial of service attacks (DDoS) on networks is a sample of such attacks. Such attacks with the occupation of system resources, have proven to be an effective method of denying network services. Botnets that launch HTTP packet flood attacks agains...
متن کاملhf-blocker: detection of distributed denial of service attacks based on botnets
abstract—today, botnets have become a serious threat to enterprise networks. by creation of network of bots, they launch several attacks, distributed denial of service attacks (ddos) on networks is a sample of such attacks. such attacks with the occupation of system resources, have proven to be an effective method of denying network services. botnets that launch http packet flood attacks agains...
متن کاملHost-based Intrusion Detection against Distributed Denial of Service Attacks
350 Abstract One of the greatest threats that network security faces nowadays is Distributed Denial of Service attacks. A newer version of the Denial of Service attack, also called Distributed Denial of Service attack or DDoS. In a distributed denialof-service (DDoS) attack, an attacker may use your computer to attack another computer. An attacker may attempt to: “flood” a network and thus redu...
متن کاملDetection and Prevention of Denial of Service Attacks Using Distributed Denial-of-Service Detection Mechanism
In the networking systems the flow of information is the most important service. It is clear that a simple self-propagating worm can quickly spread across the Internet and cause severe damage to our society. Facing this great security threats like Denial-of-Service (DoS), we need to build an early detection system that can detect the presence of a worm in the Internet as quickly as possible in ...
متن کاملNeural Network Based Protection of Software Defined Network Controller against Distributed Denial of Service Attacks
Software Defined Network (SDN) is a new architecture for network management and its main concept is centralizing network management in the network control level that has an overview of the network and determines the forwarding rules for switches and routers (the data level). Although this centralized control is the main advantage of SDN, it is also a single point of failure. If this main contro...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: International Journal of Power Electronics and Drive Systems
سال: 2023
ISSN: ['2722-2578', '2722-256X']
DOI: https://doi.org/10.11591/ijece.v13i1.pp972-986