ScienceGate Book Chapters
JOURNAL ARTICLE

A DDoS attack detection method based on time series and random forest in SDN

Meigen HuangCai Yunqiang

Year: 2021 Journal:   2021 International Conference on Intelligent Computing, Automation and Systems (ICICAS) Vol: 103 Pages: 323-327
DOI: 10.1109/icicas53977.2021.00073
   Get Full-Text PDF    Get Analytical Report

Abstract

Since the decision and forwarding function are not coupled together in SDN, the network service configuration and deployment of SDN are more flexible than traditional networks. However, a DDoS attack can consume a lot of resources of controller, thereby paralyzing the entire network service. To solve this problem, a DDoS attack detection method based on time series and random forest (RF) in SDN is proposed. The detection method first uses the ARIMA model to predict the current flow information based on the historical information entropy. If the predicted value differs significantly from the actual situation, the detailed traffic features are further extracted. Finally, the RF algorithm is used to detect whether the SDN is attacked by DDoS. Experimental results show that this detection method has better detection performance than SVM, XGBoost, RF, and KNN algorithms.

Keywords:
Denial-of-service attack Computer science Autoregressive integrated moving average Random forest Support vector machine Random early detection Time series Entropy (arrow of time) Software deployment Computer network Data mining Artificial intelligence Machine learning The Internet Network congestion Network packet

Metrics

0
Cited By
0.00
FWCI (Field Weighted Citation Impact)
15
Refs
0.24
Citation Normalized Percentile
Is in top 1%
Is in top 10%

Topics

Software-Defined Networks and 5G
Physical Sciences →  Computer Science →  Computer Networks and Communications
Network Security and Intrusion Detection
Physical Sciences →  Computer Science →  Computer Networks and Communications
Internet Traffic Analysis and Secure E-voting
Physical Sciences →  Computer Science →  Artificial Intelligence

Related Documents

JOURNAL ARTICLE

DDoS Attack Detection Based on Random Forest

Yini ChenJun HouQianmu LiHuaqiu Long

Year: 2020 Pages: 328-334
JOURNAL ARTICLE

Random Forest Implementation for Suricata-Based Real-Time DDoS Attack Detection

JuhariNuralamsah ZulkarnaimMuh Rafli RasyidAndi M. Yusuf

Journal:   Journal of Embedded Systems Security and Intelligent Systems Year: 2025 Pages: 119-132
BOOK-CHAPTER

Detection Method of Multi-Level Residual Network DDoS Attack Based on Random Forest

Yu ZhengShuang QiuXianFei ZhangGuowei ZhuDangdang DaiXiong Zhang

Advances in transdisciplinary engineering Year: 2024
JOURNAL ARTICLE

Netflow Based DDoS Attack Detection Using Time Series Analysis

Sangil Lee

Journal:   The Journal of Korean Institute of Information Technology Year: 2014 Vol: 12 (5)
JOURNAL ARTICLE

DDoS attack detection using MLP and Random Forest Algorithms

Ashfaq Ahmad NajarS. Manohar Naik

Journal:   International Journal of Information Technology Year: 2022 Vol: 14 (5)Pages: 2317-2327
© 2026 ScienceGate Book Chapters — All rights reserved.