计算机工程与应用2019,Vol.55Issue(20):84-88,127,6.DOI:10.3778/j.issn.1002-8331.1808-0343
SDN中基于C4.5决策树的DDoS攻击检测
DDoS Attack Detection Based on C4.5 in SDN
摘要
Abstract
Software Defined Network(SDN)is an emerging network architecture. Its separation of control and forward-ing architecture brings great convenience and flexibility to network management, but it also brings new security threats and challenges. By performing the Distributed Denial of Service(DDoS)attack on the centralized controller of the SDN, the attacker will make the information unreachable and cause network congestion. In order to detect the DDoS attack, a detection method based on the C4.5 decision tree is proposed. It extracts information from each switch flow entry, then generates a decision tree to classify traffic to realize the detection of DDoS attacks. Finally, the experimental results show that the method has higher detection success rate, lower false alarm rate and less detection time.关键词
软件定义网络/分布式拒绝服务攻击/C4.5决策树Key words
Software Defined Network(SDN)/Distributed Denial of Service(DDoS)attack/C4.5 decision tree分类
信息技术与安全科学引用本文复制引用
刘俊杰,王珺,王梦林,王悦..SDN中基于C4.5决策树的DDoS攻击检测[J].计算机工程与应用,2019,55(20):84-88,127,6.基金项目
国家自然科学基金(No.61571233). (No.61571233)
