A MITIGATION FRAMEWORK AGAINST DDOS ATTACKS AND FLASH EVENT IN SOFTWARE DEFINED NETWORKING

Software-Defined Networking (SDN) is a network architecture that offers a high degree of flexibility by declaring the network logic of the forwarding functions. The SDN's southbound interface easily targets the attack and the existing research studies focused only on the DDoS attack with flash events. The flash events report a condition of numerous legitimate users by accessing the website that simultaneously degraded the performance of the server and denies services to the legitimate users. The existing methods such as DosDefender, Link-Flooding Attack (LFA) Defender, etc., resulted in more secure channels, rapid detection of attacks and resistance against DDoS attacks to defend SDN. However, these methods have the limitations of low accuracy in determining attacks and less improvement in preventing traffic attacks in SDN. To overcome these limitations, the proposed entropy-based detection method is developed for DDoS attack detection and flash event mitigation. The present research examines the impact of DDoS attacks on an SDN controller and provides the solution for detecting such attacks by changing the entropy of the target Internet Protocol (IP) address. The simulation results stated that the proposed entropy-based detection, achieved 91Mbps bandwidth with a 1.03 rate of time in seconds, whereas DoSDefender achieved 70Mbps bandwidth with 120 rates of time in seconds