A Comprehensive Survey of Distributed Denial of Service Detection and Mitigation Technologies in Software-Defined Network

4Citations
Citations of this article
45Readers
Mendeley users who have this article in their library.

Abstract

The widespread adoption of software-defined networking (SDN) technology has brought revolutionary changes to network control and management. Compared to traditional networks, SDN enhances security by separating the control plane from the data plane and replacing the traditional network architecture with a more flexible one. However, due to its inherent architectural flaws, SDN still faces new security threats. This paper expounds on the architecture and security of SDN, analyzes the vulnerabilities of SDN architecture, and introduces common distributed denial of service (DDoS) attacks within the SDN architecture. This article also provides a review of the relevant literature on DDoS attack detection and mitigation in the current SDN environment based on the technologies used, including statistical analysis, machine learning, policy-based, and moving target defense techniques. The advantages and disadvantages of these technologies, in terms of deployment difficulty, accuracy, and other factors, are analyzed. Finally, this study summarizes the SDN experimental environment and DDoS attack traffic generators and datasets of the reviewed literature and the limitations of current defense methods and suggests potential future research directions.

References Powered by Scopus

A survey of security in software defined networks

402Citations
N/AReaders
Get full text

A DDoS Attack Detection Method Based on SVM in Software Defined Network

279Citations
N/AReaders
Get full text

Distributed denial of service (DDoS) attack mitigation in software defined network (SDN)-based cloud computing environment

213Citations
N/AReaders
Get full text

Cited by Powered by Scopus

DDoS Intrusions Detection in Low Power SD-IoT Devices Leveraging Effective Machine Learning

1Citations
N/AReaders
Get full text

Internet Traffic Classification Model Based on A-DBSCAN Algorithm

1Citations
N/AReaders
Get full text

SDN-IDS: A Deep Learning Model for Detecting DDoS Attacks

0Citations
N/AReaders
Get full text

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Cite

CITATION STYLE

APA

Su, Y., Xiong, D., Qian, K., & Wang, Y. (2024, February 1). A Comprehensive Survey of Distributed Denial of Service Detection and Mitigation Technologies in Software-Defined Network. Electronics (Switzerland). Multidisciplinary Digital Publishing Institute (MDPI). https://doi.org/10.3390/electronics13040807

Readers' Seniority

Tooltip

Lecturer / Post doc 5

38%

PhD / Post grad / Masters / Doc 5

38%

Professor / Associate Prof. 2

15%

Researcher 1

8%

Readers' Discipline

Tooltip

Computer Science 10

77%

Engineering 1

8%

Environmental Science 1

8%

Linguistics 1

8%

Article Metrics

Tooltip
Mentions
Blog Mentions: 1
News Mentions: 1

Save time finding and organizing research with Mendeley

Sign up for free