Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental Approach
The expected advent of the Internet of Things (IoT) has triggered a large demand of embedded devices, which envisions the autonomous interaction of sensors and actuators while offering all sort of smart services. However, these IoT devices are limited in computation, storage, and network capacity, w...
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
MDPI AG
2020-02-01
|
| Series: | Sensors |
| Subjects: | |
| Online Access: | https://www.mdpi.com/1424-8220/20/3/816 |
| _version_ | 1828118942247288832 |
|---|---|
| author | Jesús Galeano-Brajones Javier Carmona-Murillo Juan F. Valenzuela-Valdés Francisco Luna-Valero |
| author_facet | Jesús Galeano-Brajones Javier Carmona-Murillo Juan F. Valenzuela-Valdés Francisco Luna-Valero |
| author_sort | Jesús Galeano-Brajones |
| collection | DOAJ |
| description | The expected advent of the Internet of Things (IoT) has triggered a large demand of embedded devices, which envisions the autonomous interaction of sensors and actuators while offering all sort of smart services. However, these IoT devices are limited in computation, storage, and network capacity, which makes them easy to hack and compromise. To achieve secure development of IoT, it is necessary to engineer scalable security solutions optimized for the IoT ecosystem. To this end, Software Defined Networking (SDN) is a promising paradigm that serves as a pillar in the fifth generation of mobile systems (5G) that could help to detect and mitigate Denial of Service (DoS) and Distributed DoS (DDoS) threats. In this work, we propose to experimentally evaluate an entropy-based solution to detect and mitigate DoS and DDoS attacks in IoT scenarios using a stateful SDN data plane. The obtained results demonstrate for the first time the effectiveness of this technique targeting real IoT data traffic. |
| first_indexed | 2024-04-11T13:40:08Z |
| format | Article |
| id | doaj.art-c3129ce185044adf96c5f68a6955783e |
| institution | Directory Open Access Journal |
| issn | 1424-8220 |
| language | English |
| last_indexed | 2024-04-11T13:40:08Z |
| publishDate | 2020-02-01 |
| publisher | MDPI AG |
| record_format | Article |
| series | Sensors |
| spelling | doaj.art-c3129ce185044adf96c5f68a6955783e2022-12-22T04:21:18ZengMDPI AGSensors1424-82202020-02-0120381610.3390/s20030816s20030816Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental ApproachJesús Galeano-Brajones0Javier Carmona-Murillo1Juan F. Valenzuela-Valdés2Francisco Luna-Valero3Department of Computing and Telematics Engineering, Universidad de Extremadura, 06800 Mérida, SpainDepartment of Computing and Telematics Engineering, Universidad de Extremadura, 06800 Mérida, SpainDepartment of Signal Theory, Telematics and Communications, Universidad de Granada, 18071 Granada, SpainITIS Software, Universidad de Málaga, 29071 Málaga, SpainThe expected advent of the Internet of Things (IoT) has triggered a large demand of embedded devices, which envisions the autonomous interaction of sensors and actuators while offering all sort of smart services. However, these IoT devices are limited in computation, storage, and network capacity, which makes them easy to hack and compromise. To achieve secure development of IoT, it is necessary to engineer scalable security solutions optimized for the IoT ecosystem. To this end, Software Defined Networking (SDN) is a promising paradigm that serves as a pillar in the fifth generation of mobile systems (5G) that could help to detect and mitigate Denial of Service (DoS) and Distributed DoS (DDoS) threats. In this work, we propose to experimentally evaluate an entropy-based solution to detect and mitigate DoS and DDoS attacks in IoT scenarios using a stateful SDN data plane. The obtained results demonstrate for the first time the effectiveness of this technique targeting real IoT data traffic.https://www.mdpi.com/1424-8220/20/3/816stateful sdndosddosentropyinternet of thingsexperimental evaluation |
| spellingShingle | Jesús Galeano-Brajones Javier Carmona-Murillo Juan F. Valenzuela-Valdés Francisco Luna-Valero Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental Approach Sensors stateful sdn dos ddos entropy internet of things experimental evaluation |
| title | Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental Approach |
| title_full | Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental Approach |
| title_fullStr | Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental Approach |
| title_full_unstemmed | Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental Approach |
| title_short | Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental Approach |
| title_sort | detection and mitigation of dos and ddos attacks in iot based stateful sdn an experimental approach |
| topic | stateful sdn dos ddos entropy internet of things experimental evaluation |
| url | https://www.mdpi.com/1424-8220/20/3/816 |
| work_keys_str_mv | AT jesusgaleanobrajones detectionandmitigationofdosandddosattacksiniotbasedstatefulsdnanexperimentalapproach AT javiercarmonamurillo detectionandmitigationofdosandddosattacksiniotbasedstatefulsdnanexperimentalapproach AT juanfvalenzuelavaldes detectionandmitigationofdosandddosattacksiniotbasedstatefulsdnanexperimentalapproach AT franciscolunavalero detectionandmitigationofdosandddosattacksiniotbasedstatefulsdnanexperimentalapproach |