Title: Comparative study on IDS using machine learning approaches for software defined networks
Authors: K. Muthamil Sudar; P. Deepalakshmi
Addresses: Department of Computer Science and Engineering, School of Computing, Kalasalingam Academy of Research and Education, Krishnankoil, Tamilnadu, India ' Department of Computer Science and Engineering, School of Computing, Kalasalingam Academy of Research and Education, Krishnankoil, Tamilnadu, India
Abstract: Software defined networking (SDN) is an emerging network approach that separates the data plane from control plane and enables programmable features to efficiently handle the network configuration in order to improve network performance and monitoring. Since SDN contains the logically centralised controller which controls the entire network, the attacker mainly focuses on causing vulnerability towards the controller. Hence there is a need of powerful tool called intrusion detection system (IDS) to detect and prevent the network from various intrusions. Therefore, incorporation of IDS into SDN architecture is essential one. Nowadays, machine learning (ML) approaches can provide promising solution for the prediction of attacks with more accuracy and with low error rate. In this paper, we surveyed about some machine learning techniques such as naive Bayes, decision tree, random forest, multilayer perceptron algorithms for IDS and compare their performance in terms of attack prediction accuracy and error rate. Additionally, we also discussed about the background of SDN, security issues in SDN, overview of IDS types and various machine learning approaches with the knowledge of datasets.
Keywords: intrusion detection system; IDS; machine learning; software defined networking; SDN; naive Bayes; decision trees; random forest; multilayer perceptron; datasets.
International Journal of Intelligent Enterprise, 2020 Vol.7 No.1/2/3, pp.15 - 27
Received: 16 May 2018
Accepted: 11 Jul 2018
Published online: 27 Jan 2020 *