{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,14]],"date-time":"2026-06-14T07:36:23Z","timestamp":1781422583534,"version":"3.54.1"},"reference-count":44,"publisher":"Springer Science and Business Media LLC","issue":"12","license":[{"start":{"date-parts":[[2020,6,2]],"date-time":"2020-06-02T00:00:00Z","timestamp":1591056000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2020,6,2]],"date-time":"2020-06-02T00:00:00Z","timestamp":1591056000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["J Ambient Intell Human Comput"],"published-print":{"date-parts":[[2020,12]]},"DOI":"10.1007\/s12652-020-02099-4","type":"journal-article","created":{"date-parts":[[2020,6,2]],"date-time":"2020-06-02T14:04:46Z","timestamp":1591106686000},"page":"5875-5894","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":58,"title":["MitM detection and defense mechanism CBNA-RF based on machine learning for large-scale SDN context"],"prefix":"10.1007","volume":"11","author":[{"given":"Anass","family":"Sebbar","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Karim","family":"ZKIK","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Youssef","family":"Baddi","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Mohammed","family":"Boulmalf","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Mohamed Dafir Ech-Cherif El","family":"Kettani","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2020,6,2]]},"reference":[{"key":"2099_CR1","doi-asserted-by":"publisher","unstructured":"Abubakar A, Bernardi P (2017) Machine learning based intrusion detection system for software defined networks. In: 2017 Seventh International Conference on Emerging Security Technologies (EST). IEEE, pp. 138-143. https:\/\/doi.org\/10.1109\/EST.2017.8090413","DOI":"10.1109\/EST.2017.8090413"},{"issue":"4","key":"2099_CR2","doi-asserted-by":"publisher","first-page":"2317","DOI":"10.1109\/COMST.2015.2474118","volume":"17","author":"I Ahmad","year":"2015","unstructured":"Ahmad I et al (2015) Security in software defined networks: a survey. IEEE Commun Surv Tutor 17(4):2317\u20132346. https:\/\/doi.org\/10.1109\/COMST.2015.2474118","journal-title":"IEEE Commun Surv Tutor"},{"key":"2099_CR3","doi-asserted-by":"publisher","unstructured":"Ahmed T, Oreshkin B, Coates M (2007) Machine learning approaches to network anomaly detection. In: Proceedings of the 2nd USENIX workshop on Tackling computer systems problems with machine learning techniques. USENIX Association, pp. 1-6. https:\/\/doi.org\/10.5555\/1361442.1361449","DOI":"10.5555\/1361442.1361449"},{"issue":"3","key":"2099_CR4","doi-asserted-by":"publisher","first-page":"956","DOI":"10.1166\/jctn.2019.7982","volume":"16","author":"AF Ali","year":"2019","unstructured":"Ali AF, Bhaya WS (2019) Software defined network (SDN) security against address resolution protocol poisoning attack. J Comput Theor Nanosci 16(3):956\u2013963. https:\/\/doi.org\/10.1166\/jctn.2019.7982","journal-title":"J Comput Theor Nanosci"},{"key":"2099_CR5","doi-asserted-by":"publisher","first-page":"24","DOI":"10.1016\/j.procs.2018.10.125","volume":"141","author":"F Aliyu","year":"2018","unstructured":"Aliyu F, Sheltami T, Shakshuki EM (2018) A detection and prevention technique for man in the middle attack in fog computing. Procedia Comput Sci 141:24\u201331. https:\/\/doi.org\/10.1016\/j.procs.2018.10.125","journal-title":"Procedia Comput Sci"},{"key":"2099_CR6","doi-asserted-by":"publisher","unstructured":"Belhadi A et al (2019) Understanding the capabilities of Big Data Analytics for manufacturing process: insights from literature review and multiple case study. In: Computers & Industrial Engineering, p. 106099. https:\/\/doi.org\/10.1016\/j.cie.2019.106099","DOI":"10.1016\/j.cie.2019.106099"},{"key":"2099_CR7","doi-asserted-by":"publisher","first-page":"119903","DOI":"10.1016\/j.jclepro.2019.119903","volume":"252","author":"A Belhadi","year":"2020","unstructured":"Belhadi A et al (2020) The integrated effect of big data analytics, lean six sigma and green manufacturing on the environmental performance of manufacturing companies: The case of North Africa. J Clean Prod 252:119903. https:\/\/doi.org\/10.1016\/j.jclepro.2019.119903","journal-title":"J Clean Prod"},{"issue":"5","key":"2099_CR8","doi-asserted-by":"publisher","first-page":"1985","DOI":"10.1007\/s12652-018-0800-9","volume":"10","author":"K Bhushan","year":"2019","unstructured":"Bhushan K, Gupta BB (2019a) Distributed denial of service (DDoS) attack mitigation in software defined network (SDN)-based cloud computing environment. J Ambient Intell Humaniz Comput 10(5):1985\u20131997. https:\/\/doi.org\/10.1007\/s12652-018-0800-9","journal-title":"J Ambient Intell Humaniz Comput"},{"issue":"5","key":"2099_CR9","doi-asserted-by":"publisher","first-page":"1985","DOI":"10.1007\/s12652-018-0800-9","volume":"10","author":"K Bhushan","year":"2019","unstructured":"Bhushan K, Gupta BB (2019b) Distributed denial of service (DDoS) attack mitigation in software defined network (SDN)-based cloud computing environment. J Amb Intell Humaniz Comput 10(5):1985\u20131997. https:\/\/doi.org\/10.1007\/s12652-018-0800-9","journal-title":"J Amb Intell Humaniz Comput"},{"key":"2099_CR10","doi-asserted-by":"publisher","unstructured":"Brooks M, Yang B (2015) A Man-in-the-Middle attack against OpenDayLight SDN controller. In: Proceedings of the 4th Annual ACM Conference on Research in Information Technology. ACM, pp. 45-49. https:\/\/doi.org\/10.1145\/2808062.2808073","DOI":"10.1145\/2808062.2808073"},{"key":"2099_CR11","doi-asserted-by":"publisher","unstructured":"Chen P-J, Chen Y (2015) Implementation of SDN based network intrusion detection and prevention system. In: 2015 International Carnahan Conference on Security Technology (ICCST). IEEE, pp. 141-146. https:\/\/doi.org\/10.1109\/CCST.2015.7389672","DOI":"10.1109\/CCST.2015.7389672"},{"issue":"2","key":"2099_CR12","doi-asserted-by":"publisher","first-page":"96","DOI":"10.1109\/MSP.2017.46","volume":"15","author":"MC Dacier","year":"2017","unstructured":"Dacier MC et al (2017) Security challenges and opportunities of software-defined networking. IEEE Secur Priv 15(2):96\u2013100. https:\/\/doi.org\/10.1109\/MSP.2017.46","journal-title":"IEEE Secur Priv"},{"key":"2099_CR13","doi-asserted-by":"publisher","unstructured":"Dwivedi R et al (2018) A fingerprint based crypto-biometric system for secure communication. In: arXiv preprint arXiv:1805.08399. https:\/\/doi.org\/10.1007\/s12652-019-01437-5","DOI":"10.1007\/s12652-019-01437-5"},{"issue":"9","key":"2099_CR14","doi-asserted-by":"publisher","first-page":"3365","DOI":"10.1007\/s12652-018-0678-6","volume":"10","author":"E Festijo","year":"2019","unstructured":"Festijo E, Jung Y, Peradilla M (2019) Software-defined security controller-based group management and end-to-end security management. J Ambient Intell Humaniz Comput 10(9):3365\u20133382. https:\/\/doi.org\/10.1007\/s12652-018-0678-6","journal-title":"J Ambient Intell Humaniz Comput"},{"key":"2099_CR15","doi-asserted-by":"publisher","first-page":"8","DOI":"10.14722\/ndss.2015.23283","volume":"15","author":"S Hong","year":"2015","unstructured":"Hong S et al (2015) Poisoning network visibility in software-defined networks: new attacks and countermeasures. NDSS 15:8\u201311. https:\/\/doi.org\/10.14722\/ndss.2015.23283","journal-title":"NDSS"},{"key":"2099_CR16","doi-asserted-by":"publisher","unstructured":"Hu Z et al (2015) A comprehensive security architecture for SDN. In: 2015 18th International Conference on Intelligence in Next Generation Networks. IEEE, pp. 30-37. https:\/\/doi.org\/10.1109\/ICIN.2015.7073803","DOI":"10.1109\/ICIN.2015."},{"issue":"5","key":"2099_CR17","doi-asserted-by":"publisher","first-page":"2015","DOI":"10.1007\/s12652-018-0798-z","volume":"10","author":"AK Jain","year":"2019","unstructured":"Jain AK, Gupta BB (2019) A machine learning based approach for phishing detection using hyperlinks information. J Ambient Intell Humaniz Comput 10(5):2015\u20132028. https:\/\/doi.org\/10.1007\/s12652-018-0798-z","journal-title":"J Ambient Intell Humaniz Comput"},{"issue":"4","key":"2099_CR18","doi-asserted-by":"publisher","first-page":"453","DOI":"10.1007\/s12652-015-0290-y","volume":"6","author":"Y Jararweh","year":"2015","unstructured":"Jararweh Y et al (2015) SDIoT: a software defined based internet of things framework. J Ambient Intell Humaniz Comput 6(4):453\u2013461. https:\/\/doi.org\/10.1007\/s12652-015-0290-y","journal-title":"J Ambient Intell Humaniz Comput"},{"key":"2099_CR19","doi-asserted-by":"publisher","unstructured":"Kandoi R, Antikainen M (2015) Denial-of-service attacks in OpenFlow SDN networks. In: 2015 IFIP\/IEEE International Symposium on Integrated Network Management (IM). IEEE, pp. 1322-1326. https:\/\/doi.org\/10.1109\/INM.2015.7140489","DOI":"10.1109\/INM.2015.7140489"},{"key":"2099_CR20","unstructured":"Karim ZKIK, TEBAA Maha, HAJJI Said EL (2015) New homomorphic platform for authentication and downloading data in MCC. In: Proceedings of the world congress on engineering. Vol. 1"},{"key":"2099_CR21","doi-asserted-by":"publisher","first-page":"144","DOI":"10.1016\/j.future.2018.08.011","volume":"91","author":"R Koning","year":"2019","unstructured":"Koning R et al (2019) Measuring the efficiency of sdn mitigations against attacks on computer infrastructures. Futur Gen Comput Syst 91:144\u2013156. https:\/\/doi.org\/10.1016\/j.future.2018.08.011","journal-title":"Futur Gen Comput Syst"},{"key":"2099_CR22","doi-asserted-by":"publisher","unstructured":"Kreutz D et al (2014) Software-defined networking: a comprehensive survey. In: arXiv preprint arXiv:1406.0440. https:\/\/doi.org\/10.1109\/JPROC.2014.2371999","DOI":"10.1109\/JPROC.2014.2371999"},{"issue":"5","key":"2099_CR23","doi-asserted-by":"publisher","first-page":"1156","DOI":"10.1109\/JIOT.2017.2685596","volume":"4","author":"C Li","year":"2017","unstructured":"Li C et al (2017a) Securing SDN infrastructure of IoT-fog networks from MitM attacks. IEEE Internet Things J 4(5):1156\u20131164. https:\/\/doi.org\/10.1109\/JIOT.2017.2685596","journal-title":"IEEE Internet Things J"},{"key":"2099_CR24","unstructured":"Li J, Zhao Z, Li R (2017b) A machine learning based intrusion detection system for software defined 5G network. In: arXiv preprint arXiv:1708.04571"},{"key":"2099_CR25","doi-asserted-by":"publisher","unstructured":"Lu Z et al (2017) The best defense strategy against session hijacking using security game in sdn. In: 2017 IEEE 19th International Conference on High Performance Computing and Communications; IEEE 15th International Conference on Smart City; IEEE 3rd International Conference on Data Science and Systems (HPCC\/SmartCity\/DSS). IEEE, pp. 419-426. https:\/\/doi.org\/10.1109\/HPCC-SmartCity-DSS.2017.55","DOI":"10.1109\/HPCC-SmartCity-DSS.2017.55"},{"key":"2099_CR26","doi-asserted-by":"publisher","unstructured":"Phung C-D et al (2019) MPTCP robustness against large-scale manin- the-middle attacks. In: Computer Networks 164, p. 106896. https:\/\/doi.org\/10.1016\/j.comnet.2019.106896","DOI":"10.1016\/j.comnet.2019.106896"},{"key":"2099_CR27","doi-asserted-by":"publisher","unstructured":"Qin B et al (2017) Cecoin: a decentralized PKI mitigating MitM attacks. In: Future Generation Computer Systems. https:\/\/doi.org\/10.1016\/j.future.2017.08.025","DOI":"10.1016\/j.future.2017.08.025"},{"issue":"2","key":"2099_CR28","doi-asserted-by":"publisher","first-page":"232","DOI":"10.14419\/jacst.v3i2.3754","volume":"3","author":"S Rowshanrad","year":"2014","unstructured":"Rowshanrad S et al (2014) A survey on SDN, the future of networking. J Adv Comput Sci Technol 3(2):232\u2013248. https:\/\/doi.org\/10.14419\/jacst.v3i2.3754","journal-title":"J Adv Comput Sci Technol"},{"key":"2099_CR29","unstructured":"Scale R (2019) Cloud computing trends: 2019 state of the cloud survey. In:"},{"key":"2099_CR30","doi-asserted-by":"publisher","unstructured":"Scott-Hayward, Sandra, O\u2019Callaghan Gemma, Sezer Sakir (2013) SDN security: A survey. In: 2013 IEEE SDN For Future Networks and Services (SDN4FNS). IEEE, pp. 1-7. https:\/\/doi.org\/10.1109\/SDN4FNS.2013.6702553","DOI":"10.1109\/SDN4FNS.2013.6702553"},{"key":"2099_CR31","doi-asserted-by":"publisher","unstructured":"Sebbar A et al (2018) Detection MITM Attack in Multi-SDN Controller. In: 2018 IEEE 5th International Congress on Information Science and Technology (CiSt). IEEE, pp. 583-587. https:\/\/doi.org\/10.1109\/CIST.2018.8596479","DOI":"10.1109\/CIST."},{"key":"2099_CR32","doi-asserted-by":"publisher","unstructured":"Sebbar A et al (2019a) New context-based node acceptance CBNA framework for MitM detection in SDN Architecture. In: Procedia Computer Science 160, pp. 825-830. https:\/\/doi.org\/10.1016\/j.procs.2019.11.004","DOI":"10.1016\/j.procs.2019."},{"key":"2099_CR33","doi-asserted-by":"publisher","unstructured":"Sebbar A et al (2019b) Using advanced detection and prevention technique to mitigate threats in SDN architecture. In: 2019 15th International Wireless Communications & Mobile Computing Conference (IWCMC). IEEE, pp. 90-95. https:\/\/doi.org\/10.1109\/IWCMC.2019.8766552","DOI":"10.1109\/IWCMC.2019.8766552"},{"issue":"7","key":"2099_CR34","doi-asserted-by":"publisher","first-page":"36","DOI":"10.1109\/MCOM.2013.6553676","volume":"51","author":"S Sezer","year":"2013","unstructured":"Sezer S et al (2013) Are we ready for SDN? Implementation challenges for software-defined networks. IEEE Communs Mag 51(7):36\u201343. https:\/\/doi.org\/10.1109\/MCOM.2013.6553676","journal-title":"IEEE Communs Mag"},{"issue":"1","key":"2099_CR35","doi-asserted-by":"publisher","first-page":"118","DOI":"10.1198\/106186006X94072","volume":"15","author":"T Shi","year":"2006","unstructured":"Shi T, Horvath S (2006) Unsupervised learning with random forest predictors. J Comput Graph Stat 15(1):118\u2013138. https:\/\/doi.org\/10.1198\/106186006X94072","journal-title":"J Comput Graph Stat"},{"issue":"2","key":"2099_CR36","doi-asserted-by":"publisher","first-page":"493","DOI":"10.1007\/s12083-017-0630-0","volume":"12","author":"N Sultana","year":"2019","unstructured":"Sultana N et al (2019) Survey on SDN based network intrusion detection system using machine learning approaches. Peer-to-Peer Netw Appl 12(2):493\u2013501. https:\/\/doi.org\/10.1007\/s12083-017-0630-0","journal-title":"Peer-to-Peer Netw Appl"},{"key":"2099_CR37","doi-asserted-by":"publisher","unstructured":"Tang TA et al (2016) Deep learning approach for network intrusion detection in software defined networking. In: 2016 International Conference on Wireless Networks and Mobile Communications (WINCOM). IEEE, pp. 258-263. https:\/\/doi.org\/10.1109\/WINCOM.2016.7777224","DOI":"10.1109\/WINCOM.2016.7777224"},{"issue":"2","key":"2099_CR38","first-page":"137","volume":"2","author":"V Vapnik","year":"2005","unstructured":"Vapnik V (2005) Universal learning technology: support vector machines. NEC J Adv Technol 2(2):137\u2013144","journal-title":"NEC J Adv Technol"},{"key":"2099_CR39","doi-asserted-by":"publisher","unstructured":"Wang X et al (2016) Novel mitm attacks on security protocols in sdn: A feasibility study. In: International Conference on Information and Communications Security. Springer, pp. 455-465. https:\/\/doi.org\/10.1007\/978-3-319-50011-9_3","DOI":"10.1007\/978-3-319-50011-9_3"},{"issue":"5","key":"2099_CR40","doi-asserted-by":"publisher","first-page":"1915","DOI":"10.1007\/s12652-018-0783-6","volume":"10","author":"H Zhang","year":"2019","unstructured":"Zhang H, Tang F, Barolli L (2019) Efficient flow detection and scheduling for SDN-based big data centers. J Ambient Intell Humaniz Comput 10(5):1915\u20131926. https:\/\/doi.org\/10.1007\/s12652-018-0783-6","journal-title":"J Ambient Intell Humaniz Comput"},{"key":"2099_CR41","doi-asserted-by":"publisher","first-page":"718","DOI":"10.1109\/grc.2005.1547385","volume":"5","author":"M-L Zhang","year":"2005","unstructured":"Zhang M-L, Zhou Z-H (2005) A k-nearest neighbor based algorithm for multi-label classification. GrC 5:718\u2013721. https:\/\/doi.org\/10.1109\/grc.2005.1547385","journal-title":"GrC"},{"key":"2099_CR42","doi-asserted-by":"publisher","unstructured":"Zkik K, Hajji SE, Orhanou G (2018) A centralized secure plan for detecting and mitigation incidents in hybrid SDN. In: MATEC Web of Conferences. Vol. 189. EDP Sciences, p. 10015. https:\/\/doi.org\/10.1051\/matecconf\/201818910015","DOI":"10.1051\/matecconf\/201818910015"},{"key":"2099_CR43","doi-asserted-by":"publisher","unstructured":"Zkik K et al (2019) An efficient modular security plane AM-SecP for hybrid distributed SDN. In: 2019 International Conference on Wireless and Mobile Computing, Networking and Communications (WiMob). IEEE, pp. 354-359. https:\/\/doi.org\/10.1109\/WiMOB.2019.8923557","DOI":"10.1109\/WiMOB.2019.8923557"},{"key":"2099_CR44","doi-asserted-by":"publisher","unstructured":"Zuo Z et al (2020) P4Label: packet forwarding control mechanism based on P4 for software-defined networking. J Ambient Intell Humaniz Comput, pp. 1-14. https:\/\/doi.org\/10.1007\/s12652-020-01719-3","DOI":"10.1007\/s12652-020-01719-3"}],"container-title":["Journal of Ambient Intelligence and Humanized Computing"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s12652-020-02099-4.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s12652-020-02099-4\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s12652-020-02099-4.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,6,2]],"date-time":"2021-06-02T00:23:48Z","timestamp":1622593428000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s12652-020-02099-4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,6,2]]},"references-count":44,"journal-issue":{"issue":"12","published-print":{"date-parts":[[2020,12]]}},"alternative-id":["2099"],"URL":"https:\/\/doi.org\/10.1007\/s12652-020-02099-4","relation":{},"ISSN":["1868-5137","1868-5145"],"issn-type":[{"value":"1868-5137","type":"print"},{"value":"1868-5145","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020,6,2]]},"assertion":[{"value":"30 December 2019","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"15 April 2020","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"2 June 2020","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}