Deception and cloud integration: A multi-layered approach for DDoS detection, mitigation, and attack surface minimization in SD-IoT networks

Faculty Computer Science Year: 2025
Type of Publication: ZU Hosted Pages:
Authors:
Journal: Computers and Electrical Engineering Elsevier Volume:
Keywords : Deception , cloud integration: , multi-layered approach , DDoS    
Abstract:
Detecting Distributed Denial of Service (DDoS) attacks in Software-Defined Internet of Things (SD-IoT) networks is challenging due to vulnerabilities in single-controller architectures, the limitations of the OpenFlow protocol, evolving DDoS strategies, and resource constraints. This research proposes a multi-layered security framework that integrates deception-based security, cloud-integrated machine learning (ML), a new hierarchically distributed multi-controller (HDMC) architecture, P4-enabled real-time traffic monitoring, and adaptive mitigation. The framework includes dynamic time-based windowing for enhanced detection, a decoy network to divert attackers, and a cloud-based multi-task ML model (MT-EDD) for attack classification. It also features a synchronized multi-control design for secure communication and coordinated actions among multiple controllers and a dynamic monitoring algorithm for real-time …
   
     
 
       

Author Related Publications

  • Amir El Sayed Godaa Hassan, "FOUR-PHASE PROTOCOL FOR DETECTION, DELETION, PROTECTION AND RECOVERY FROM AUTORUN VIRUS", Journal of Theoretical and Applied Information Technology, 2018 More
  • Amir El Sayed Godaa Hassan, "FOUR-PHASE PROTOCOL FOR DETECTION, DELETION, PROTECTION AND RECOVERY FROM AUTORUN VIRUS", Journal of Theoretical and Applied Information Technology, 2018 More
  • Amir El Sayed Godaa Hassan, "P4-HLDMC: A Novel Framework for DDoS and ARP Attack Detection and Mitigation in SD-IoT Networks Using Machine Learning, Stateful P4, and Distributed Multi-Controller Architecture", MDPI, 2023 More
  • Amir El Sayed Godaa Hassan, "FMDADM: A Multi-Layer DDoS Attack Detection and Mitigation Framework Using Machine Learning for Stateful SDN-Based IoT Networks", IEEE, 2023 More
  • Amir El Sayed Godaa Hassan, "LBTMA: An integrated P4-enabled framework for optimized traffic management in SD-IoT networks", ELSEVIER, 2024 More

Department Related Publications

  • Ahmed Salah Mohamed Mostafa, "Manipulating Dynamic Fluctuation Drawbacks in a Virtualized Environment", International Journal of Advancements in Computing Technology, 2013 More
  • Doaa El-Shahat Barakat Mohammed, "A modified flower pollination algorithm for the multidimensional knapsack problem: human-centric decision making", Springer, 2017 More
  • Abdallah Gamal abdallah mahmoud, "An approach of TOPSIS technique for developing supplier selection with group decision making under type-2 neutrosophic number", Elsevier B.V., 2019 More
  • Doaa El-Shahat Barakat Mohammed, "Energy-Aware Metaheuristic algorithm for Industrial Internet of Things task scheduling problems in fog computing applications", IEEE, 2020 More
  • Ahmed Salah Mohamed Mostafa, "Efficient scientific workflow scheduling for deadline-constrained parallel tasks in cloud computing environments", ُElsevier, 2020 More
Tweet