|
Multistage classification in SDN security: a machine learning approach using real-world data for enhanced intrusion and vulnerability detection
|
Authors: Ndabuye Sengayo, Thomas Basikolo
Status: Final
Date of publication: 10 December 2024
Published in: ITU Journal on Future and Evolving Technologies, Volume 5 (2024), Issue 4, Pages 433-446
Article DOI : https://doi.org/10.52953/BZOJ6066
|
Abstract:
The evolution from conventional network frameworks to Software-Defined Networks (SDNs) marks a pivotal shift in network management. SDNs offer a unique architecture where a centralized controller orchestrates network traffic, separating the control plane from the data plane. This architecture not only brings enhanced flexibility, agility, and scalability to network operations but also introduces specific security challenges, primarily due to the centralization of control, which can be a potential Single Point of Failures (SPOFs). Addressing these security concerns, this paper introduces an innovative machine learning-based Intrusion Detection System (IDS) tailored for SDNs, by proposing a three-stage CatBoost Classifier (3CC). This classifier is specifically designed for efficient and effective intrusion and vulnerability detection within SDN environments. The multistage aspect of the classifier allows for refined and detailed analysis, catering to a diverse array of attack vectors. Another key feature of our approach is the utilization of real-world data from SDN environments, which ensures that our model is tested and validated under realistic and current conditions. Furthermore, the integration of GPU acceleration significantly enhances the training speed of our model, a critical factor given the voluminous nature of network data. The proposed model, 3CC, demonstrates remarkable performance in our evaluations, achieving an accuracy of 99.8966%. This high level of precision in detecting and identifying various network intrusions and vulnerabilities underlines the efficacy of our approach. Our paper contributes significantly to the field of SDN security, offering a sophisticated, multistage classification solution that leverages the latest in machine learning techniques and real-world applicability. |
Keywords: CatBoost, GPU acceleration, Intrusion Detection System (IDS), machine learning, Software Defined Networks (SDNs), stratified k-fold
Rights: © International Telecommunication Union, available under the CC BY-NC-ND 3.0 IGO license.
|
|
| ITEM DETAIL | ARTICLE | PRICE | |
|---|
ENGLISH 
Full article (PDF) |
|
| 0
| Free of charge | DOWNLOAD |
|
|
| |
