Deteksi Dan Mitigasi Serangan DDoS Pada Software Defined Network Menggunakan Algoritma Decision Tree

Syahputra, Muhammad Qaidin and Akbi, Denar Regata and Risqiwati, Diah (2020) Deteksi Dan Mitigasi Serangan DDoS Pada Software Defined Network Menggunakan Algoritma Decision Tree. Jurnal Repositor, 2 (11). pp. 1491-1502. ISSN ISSN : 2714-7975 E-ISSN : 2716-1382

[thumbnail of Syahputra Akbi Risqiwati - SDN CICIDS 2017 UDP Flood Decision Tree Drop Packet.pdf]
Preview
Text
Syahputra Akbi Risqiwati - SDN CICIDS 2017 UDP Flood Decision Tree Drop Packet.pdf

Download (552kB) | Preview
[thumbnail of Similarity - Syahputra Akbi Risqiwati - SDN CICIDS 2017 UDP Flood Decision Tree Drop Packet.pdf]
Preview
Text
Similarity - Syahputra Akbi Risqiwati - SDN CICIDS 2017 UDP Flood Decision Tree Drop Packet.pdf

Download (2MB) | Preview

Abstract

Software Defined Network (SDN) is a new paradigm in network management that
provides facilities to configure, virtualize, and process network infrastructure centrally. Centralized
network management is performed on the SDN Controller which separates the network data plane
from control functions. Distributed Denial of Service (DDoS) attacks are one of the major problems
in network security that cause services on the network to become inaccessible for a certain period
of time. This study aims to create a detection system using Decision Tree algorithm and DDoS
attack mitigation with the drop packet method on Software Defined Network. The classification
model that has been built based on the CICIDS 2017 dataset is applied to the controller and then
detects a DDoS attack as type User Data Protocol (UDP). Every packet in that enters in controller
will go through to the detection process before it is forwarded to the destination source, while if
the packet in is detected as a DDoS attack, the controller will perform the function of drop packet
mitigation against the host that is proven to attack. From the experiments that have been carried
out UDP Flood proved to consume a lot of network resources and increase CPU usage, causing
the controller to experience a malfunction during the attack process. The results of this study
indicate that the system created successfully carried out the process of detecting and mitigating
UDP Flood attacks with an accuracy of 99.95% and followed by the mitigation process of each
package that was proven to carry out attacks.

Item Type: Article
Keywords: SDN, CICIDS 2017, UDP Flood, Decision Tree, Drop Packet.
Subjects: Q Science > Q Science (General)
Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Q Science > QA Mathematics > QA76 Computer software
T Technology > T Technology (General)
Divisions: Faculty of Engineering > Department of Informatics (55201)
Depositing User: maulana Maulana Chairudin
Date Deposited: 15 Mar 2024 02:26
Last Modified: 15 Mar 2024 02:26
URI: https://eprints.umm.ac.id/id/eprint/4809

Actions (login required)

View Item
View Item