With the rapid development of Software-Defined Networking (SDN) advocating a centralized view of networks, efficient and reliable Distributed Denial of Service (DDoS) defenses are necessary to protect the centralized SDN controller. Recently, an amalgamation of work has realized such defenses using Deep Learning (DL) based algorithms. Although DL-based algorithms are generally prone to adversarial learning attacks, the extent to which those attacks are applicable to DDoS defenses in SDN is unexamined. In this work, we explore the robustness of DL-based DDoS defenses in SDN against adversarial learning attacks. First, we investigate generic off-the-shelf adversarial attacks to test the robustness of DDoS defenses in SDN, and demonstrate that while they lead to misclassification, these attacks do not preserve the characteristics of flows. As a result, we propose Flow-Merge for realistic adversarial flows while achieving a high evasion rate, with both targeted and untargeted misclassification attacks. The proposed Flow-Merge is able to force the DL-based DDoS defenses to misclassify 100% of benign flows as malicious, while preserving original characteristics of flows. Using state-of-the-art defenses, we show that the adversarial flows generated using Flow-Merge are difficult to detect, with only 49.31% detection rate when using adversarial training.
|Title of host publication||2019 IEEE Conference on Dependable and Secure Computing, DSC 2019 - Proceedings|
|Publisher||Institute of Electrical and Electronics Engineers Inc.|
|State||Published - Nov 2019|
|Event||3rd IEEE Conference on Dependable and Secure Computing, DSC 2019 - Hangzhou, China|
Duration: 18 Nov 2019 → 20 Nov 2019
|Name||2019 IEEE Conference on Dependable and Secure Computing, DSC 2019 - Proceedings|
|Conference||3rd IEEE Conference on Dependable and Secure Computing, DSC 2019|
|Period||18/11/19 → 20/11/19|
Bibliographical noteFunding Information:
Acknowledgement. This work is supported in part by NRF-2016K1A1A2912757 and NVIDIA GPU Grant, and NSF awards 1647189, 1814086, and 1643207.
This work is supported in part by NRF- 2016K1A1A2912757 and NVIDIA GPU Grant, and NSF awards 1647189, 1814086, and 1643207.
© 2019 IEEE.
- Adversarial Machine Learning
- Deep Learning
- Intrusion Detection Systems
- Software Defined Networking