Abstract
With the rapid development of Software-Defined Networking (SDN) advocating a centralized view of networks, efficient and reliable Distributed Denial of Service (DDoS) defenses are necessary to protect the centralized SDN controller. In this work, we explore the robustness of DL-based DDoS defenses in SDN against adversarial learning attacks. First, we investigate generic off-the-shelf adversarial attacks to test the robustness of DDoS defenses in SDN. Then, we propose Flow-Merge for realistic adversarial flows while achieving a high evasion rate. The evaluation shows that the proposed Flow-Merge is able to force the DL-based DDoS defenses to misclassify 100% of benign flows as malicious.
Original language | English |
---|---|
Title of host publication | CoNEXT 2019 Companion - Proceedings of the 15th International Conference on Emerging Networking EXperiments and Technologies, Part of CoNEXT 2019 |
Publisher | Association for Computing Machinery, Inc |
Pages | 49-50 |
Number of pages | 2 |
ISBN (Electronic) | 9781450370066 |
DOIs | |
State | Published - 9 Dec 2019 |
Event | 15th International Conference on Emerging Networking EXperiments and Technologies, CoNEXT 2019 - Part of CoNEXT 2019 - Orlando, United States Duration: 9 Dec 2019 → 12 Dec 2019 |
Publication series
Name | CoNEXT 2019 Companion - Proceedings of the 15th International Conference on Emerging Networking EXperiments and Technologies, Part of CoNEXT 2019 |
---|
Conference
Conference | 15th International Conference on Emerging Networking EXperiments and Technologies, CoNEXT 2019 - Part of CoNEXT 2019 |
---|---|
Country/Territory | United States |
City | Orlando |
Period | 9/12/19 → 12/12/19 |
Bibliographical note
Publisher Copyright:© 2019 held by the owner/author(s).
Keywords
- Adversarial Attacks
- Deep Learning
- Distributed Denial of Service
- Intrusion Detection