Abstract
With the rapid development of Software-Defined Networking (SDN) advocating a centralized view of networks, efficient and reliable Distributed Denial of Service (DDoS) defenses are necessary to protect the centralized SDN controller. In this work, we explore the robustness of DL-based DDoS defenses in SDN against adversarial learning attacks. First, we investigate generic off-the-shelf adversarial attacks to test the robustness of DDoS defenses in SDN. Then, we propose Flow-Merge for realistic adversarial flows while achieving a high evasion rate. The evaluation shows that the proposed Flow-Merge is able to force the DL-based DDoS defenses to misclassify 100% of benign flows as malicious.
| Original language | English |
|---|---|
| Title of host publication | CoNEXT 2019 Companion - Proceedings of the 15th International Conference on Emerging Networking EXperiments and Technologies, Part of CoNEXT 2019 |
| Publisher | Association for Computing Machinery, Inc |
| Pages | 49-50 |
| Number of pages | 2 |
| ISBN (Electronic) | 9781450370066 |
| DOIs | |
| State | Published - 9 Dec 2019 |
| Event | 15th International Conference on Emerging Networking EXperiments and Technologies, CoNEXT 2019 - Part of CoNEXT 2019 - Orlando, United States Duration: 9 Dec 2019 → 12 Dec 2019 |
Publication series
| Name | CoNEXT 2019 Companion - Proceedings of the 15th International Conference on Emerging Networking EXperiments and Technologies, Part of CoNEXT 2019 |
|---|
Conference
| Conference | 15th International Conference on Emerging Networking EXperiments and Technologies, CoNEXT 2019 - Part of CoNEXT 2019 |
|---|---|
| Country/Territory | United States |
| City | Orlando |
| Period | 9/12/19 → 12/12/19 |
Bibliographical note
Publisher Copyright:© 2019 held by the owner/author(s).
Keywords
- Adversarial Attacks
- Deep Learning
- Distributed Denial of Service
- Intrusion Detection