Next Article in Journal
How Data Will Transform Industrial Processes: Crowdsensing, Crowdsourcing and Big Data as Pillars of Industry 4.0
Previous Article in Journal
Learning and Mining Player Motion Profiles in Physically Interactive Robogames
Previous Article in Special Issue
Security and Privacy in Wireless and Mobile Networks
Article Menu

Export Article

Open AccessArticle
Future Internet 2018, 10(3), 23; doi:10.3390/fi10030023

SDN Based Collaborative Scheme for Mitigation of DDoS Attacks

IT Security Labs, National University of Computer and Emerging Sciences (FAST-NUCES), Karachi 75030, Pakistan
Author to whom correspondence should be addressed.
Received: 28 December 2017 / Revised: 9 February 2018 / Accepted: 22 February 2018 / Published: 27 February 2018
(This article belongs to the Collection Information Systems Security)
View Full-Text   |   Download PDF [1666 KB, uploaded 1 March 2018]   |  


Software Defined Networking (SDN) has proved itself to be a backbone in the new network design and is quickly becoming an industry standard. The idea of separation of control plane and data plane is the key concept behind SDN. SDN not only allows us to program and monitor our networks but it also helps in mitigating some key network problems. Distributed denial of service (DDoS) attack is among them. In this paper we propose a collaborative DDoS attack mitigation scheme using SDN. We design a secure controller-to-controller (C-to-C) protocol that allows SDN-controllers lying in different autonomous systems (AS) to securely communicate and transfer attack information with each other. This enables efficient notification along the path of an ongoing attack and effective filtering of traffic near the source of attack, thus saving valuable time and network resources. We also introduced three different deployment approaches i.e., linear, central and mesh in our testbed. Based on the experimental results we demonstrate that our SDN based collaborative scheme is fast and reliable in efficiently mitigating DDoS attacks in real time with very small computational footprints. View Full-Text
Keywords: DDoS; SDN; Software Defined Networking; Software Defined Security; DDoS mitigation DDoS; SDN; Software Defined Networking; Software Defined Security; DDoS mitigation

Figure 1

This is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited. (CC BY 4.0).

Scifeed alert for new publications

Never miss any articles matching your research from any publisher
  • Get alerts for new papers matching your research
  • Find out the new papers from selected authors
  • Updated daily for 49'000+ journals and 6000+ publishers
  • Define your Scifeed now

SciFeed Share & Cite This Article

MDPI and ACS Style

Hameed, S.; Ahmed Khan, H. SDN Based Collaborative Scheme for Mitigation of DDoS Attacks. Future Internet 2018, 10, 23.

Show more citation formats Show less citations formats

Note that from the first issue of 2016, MDPI journals use article numbers instead of page numbers. See further details here.

Related Articles

Article Metrics

Article Access Statistics



[Return to top]
Future Internet EISSN 1999-5903 Published by MDPI AG, Basel, Switzerland RSS E-Mail Table of Contents Alert
Back to Top