{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,29]],"date-time":"2025-12-29T19:02:12Z","timestamp":1767034932946,"version":"3.37.3"},"reference-count":33,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2019,5,1]],"date-time":"2019-05-01T00:00:00Z","timestamp":1556668800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2019,5,1]],"date-time":"2019-05-01T00:00:00Z","timestamp":1556668800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"DOI":"10.13039\/501100010221","name":"Higher Education Commision, Pakistan","doi-asserted-by":"publisher","award":["315-7318-2EG3-116"],"award-info":[{"award-number":["315-7318-2EG3-116"]}],"id":[{"id":"10.13039\/501100010221","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100011665","name":"Deanship of Scientific Research, King Saud University","doi-asserted-by":"publisher","award":["RGP-214"],"award-info":[{"award-number":["RGP-214"]}],"id":[{"id":"10.13039\/501100011665","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Hum. Cent. Comput. Inf. Sci."],"published-print":{"date-parts":[[2019,12]]},"abstract":"<jats:title>Abstract<\/jats:title>\n               <jats:p>Software defined networking (SDN) is becoming more and more popular due to its key features, such as monitoring, fine-grained control, flexibility and scalability. The centralized control of SDN makes it vulnerable to various types of attacks, e.g., flooding, spoofing, and denial of service (DoS). Among these attacks, DoS attack has the most severe impact because it degrades the performance of the SDN by overloading its different components, i.e., controller, switch, and control channel. This impact becomes more prominent in SDNs having fine-grained control over traffic for monitoring and management purposes, where large numbers of flow rules are installed. Existing approaches handle DoS attacks in SDN either by dropping malicious packets or by aggregating flow rules, resulting in a legitimate packet drop or loss of fine-grained control over network traffic. In this paper, a parallel flow installation approach is proposed to reduce the effects of DoS attacks, without losing the monitoring capability and fine-grained control over network traffic. The proposed approach installs flow rules in all switches along the path from the source to the destination on a single request from the source; resulting in a considerable reduction of control channel traffic and controller\u2019s utilization. The proposed approach is evaluated by comparing it with the basic SDN controller. The simulation results show that the proposed approach increases the SDN performance in terms of CPU utilization, response time, flow requests, and control channel bandwidth.<\/jats:p>","DOI":"10.1186\/s13673-019-0176-7","type":"journal-article","created":{"date-parts":[[2019,5,1]],"date-time":"2019-05-01T00:03:08Z","timestamp":1556668988000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":22,"title":["Reducing the effects of DoS attacks in software defined networks using parallel flow installation"],"prefix":"10.1186","volume":"9","author":[{"given":"Muhammad","family":"Imran","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Muhammad Hanif","family":"Durad","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7023-7172","authenticated-orcid":false,"given":"Farrukh Aslam","family":"Khan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Abdelouahid","family":"Derhab","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,5,1]]},"reference":[{"key":"176_CR1","doi-asserted-by":"publisher","first-page":"69","DOI":"10.1145\/1355734.1355746","volume":"38","author":"N McKeown","year":"2008","unstructured":"McKeown N, Anderson T, Balakrishnan H, Parulkar G, Peterson L, Rexford J, Shenker S, Turner J (2008) Openow: enabling innovation in campus networks. SIGCOMM Comput Commun Rev 38:69\u201374","journal-title":"SIGCOMM Comput Commun Rev"},{"key":"176_CR2","unstructured":"OpenFlow Switch Specification, Version 1.5.1.; 2015. https:\/\/www.opennetworking.org\/software-defined-standards\/specifications\/. Accessed 04 Sept 2018"},{"key":"176_CR3","doi-asserted-by":"publisher","first-page":"14","DOI":"10.1109\/JPROC.2014.2371999","volume":"103","author":"D Kreutz","year":"2015","unstructured":"Kreutz D, Ramos FMV, Verissimo PE, Rothenberg CE, Azodolmolky S, Uhlig S (2015) Software-defined networking: a comprehensive survey. Proc IEEE 103:14\u201376","journal-title":"Proc IEEE"},{"key":"176_CR4","doi-asserted-by":"publisher","first-page":"197","DOI":"10.1016\/j.csi.2017.01.005","volume":"54","author":"S Schaller","year":"2017","unstructured":"Schaller S, Hood D (2017) Software defined networking architecture standardization. Comput Stand Interfaces 54:197\u2013202","journal-title":"Comput Stand Interfaces"},{"key":"176_CR5","doi-asserted-by":"publisher","first-page":"81","DOI":"10.1016\/j.comnet.2018.02.015","volume":"135","author":"M Karakus","year":"2018","unstructured":"Karakus M, Durresi A (2018) Economic viability of software defined networking (SDN). Comput Netw 135:81\u201395","journal-title":"Comput Netw"},{"key":"176_CR6","doi-asserted-by":"publisher","first-page":"2181","DOI":"10.1109\/COMST.2014.2326417","volume":"16","author":"F Hu","year":"2014","unstructured":"Hu F, Hao Q, Bao K (2014) A survey on software-defined network and OpenFlow: from concept to implementation. IEEE Commun Surv Tutorials 16:2181\u20132206","journal-title":"IEEE Commun Surv Tutorials"},{"key":"176_CR7","doi-asserted-by":"crossref","unstructured":"Kandoi R, Antikainen M (2015) Denial-of-service attacks in OpenFlow SDN networks. In: 2015 IFIP\/IEEE international symposium on integrated network management (IM). IEEE, New York","DOI":"10.1109\/INM.2015.7140489"},{"key":"176_CR8","doi-asserted-by":"publisher","first-page":"2317","DOI":"10.1109\/COMST.2015.2474118","volume":"17","author":"I Ahmad","year":"2015","unstructured":"Ahmad I, Namal S, Ylianttila M, Gurtov A (2015) Security in software defined networks: a survey. IEEE Commun Surv Tutorials 17:2317\u20132346","journal-title":"IEEE Commun Surv Tutorials"},{"key":"176_CR9","doi-asserted-by":"publisher","first-page":"79","DOI":"10.1016\/j.cose.2015.05.006","volume":"53","author":"Izzat Alsmadi","year":"2015","unstructured":"Alsmadi Izzat, Dianxiang Xu (2015) Security of software defined networks: a survey. Comput Secur 53:79\u2013108","journal-title":"Comput Secur"},{"key":"176_CR10","doi-asserted-by":"publisher","first-page":"444","DOI":"10.1016\/j.future.2018.09.022","volume":"92","author":"M Imran","year":"2019","unstructured":"Imran M, Durad MH, Khan FA, Derhab A (2019) Toward an optimal solution against denial of service attacks in software defined networks. Future Generat Comput Syst 92:444\u2013453","journal-title":"Future Generat Comput Syst"},{"key":"176_CR11","doi-asserted-by":"publisher","first-page":"107","DOI":"10.1016\/j.comnet.2018.03.021","volume":"137","author":"N Anand","year":"2018","unstructured":"Anand N, Babu S, Manoj B (2018) On detecting compromised controller in software defined networks. Comput Netw 137:107\u2013118","journal-title":"Comput Netw"},{"key":"176_CR12","doi-asserted-by":"crossref","unstructured":"Kloti R, Kotronis V, Smith P (2013) Openflow: a security analysis. In: 21st IEEE international conference on network protocols (ICNP). IEEE, New York","DOI":"10.1109\/ICNP.2013.6733671"},{"key":"176_CR13","unstructured":"Floodlight OpenFlow Controller. http:\/\/www.projectoodlight.org\/floodlight\/. Accessed 04 Sept 2018"},{"key":"176_CR14","unstructured":"Open Network Operating System (ONOS). https:\/\/onosproject.org\/. Accessed 04 Sept 2018"},{"key":"176_CR15","unstructured":"Ryu SDN Framework. https:\/\/osrg.github.io\/ryu\/. Accessed 04 Sept 2018"},{"key":"176_CR16","unstructured":"The POX Controller. https:\/\/github.com\/noxrepo\/pox. Accessed 04 Sept 2018"},{"key":"#cr-split#-176_CR17.1","unstructured":"Dillon C, Berkelaar M (2014) OpenFlow"},{"key":"#cr-split#-176_CR17.2","unstructured":"(D) DoS Mitigation. Technical report. http:\/\/www.delaat.net\/rp\/2013-2014\/p42\/report.pdf. Accessed 04 Sept 2018"},{"key":"176_CR18","doi-asserted-by":"crossref","unstructured":"Shin S, Yegneswaran V, Porras P, Gu G (2013) AVANT-GUARD: scalable and vigilant switch flow management in software-defined networks. In: 2013 ACM SIGSAC conference on computer & communications security (CCS 2013). ACM, New York","DOI":"10.1145\/2508859.2516684"},{"key":"176_CR19","unstructured":"Wang H, Xu L, Gu G (2014) OF-GUARD: a DoS attack prevention extension in software-defined networks. In: The Open Network Summit (ONS), Santa Clara, CA, 3\u20135 March 2014"},{"key":"176_CR20","doi-asserted-by":"crossref","unstructured":"Oktian YE, Lee S, Lee H (2014) Mitigating denial of service (DoS) attacks in openflow networks. In: International conference on information and communication technology convergence (ICTC). IEEE, New York","DOI":"10.1109\/ICTC.2014.6983147"},{"key":"176_CR21","doi-asserted-by":"crossref","unstructured":"Belyaev M, Gaivoronski S (2014) Towards load balancing in SDN-networks during DDoS-attacks. In: First international science and technology conference (Modern Networking Technologies) (MoNeTeC). IEEE, New York","DOI":"10.1109\/MoNeTeC.2014.6995578"},{"key":"176_CR22","doi-asserted-by":"publisher","first-page":"308","DOI":"10.1016\/j.comnet.2015.02.026","volume":"81","author":"B Wang","year":"2015","unstructured":"Wang B, Zheng Y, Lou W, Hou YT (2015) DDoS attack protection in the era of cloud computing and software-defined networking. Comput Netw 81:308\u2013319","journal-title":"Comput Netw"},{"key":"176_CR23","unstructured":"Dao NN, Park J, Park M, Cho S (2015) A feasible method to combat against DDoS attack in SDN network. In: 2015 International conference on information networking (ICOIN). IEEE, New York"},{"key":"176_CR24","doi-asserted-by":"crossref","unstructured":"Kuerban M, Tian Y, Yang Q, Jia Y, Huebert B, Poss D (2016) FlowSec: DOS attack mitigation strategy on SDN controller. In: 2016 IEEE international conference on networking, architecture and storage (NAS). IEEE, New York","DOI":"10.1109\/NAS.2016.7549402"},{"key":"176_CR25","doi-asserted-by":"crossref","unstructured":"Padmaja S, Vetriselvi V (2016) Mitigation of switch-DoS in software defined network. In: 2016 international conference on information communication and embedded systems (ICICES). IEEE, New York","DOI":"10.1109\/ICICES.2016.7518925"},{"key":"176_CR26","doi-asserted-by":"crossref","unstructured":"Dridi L, Zhani MF (2016) SDN-Guard: DoS attacks mitigation in SDN networks. In: 5th IEEE international conference on cloud networking (Cloudnet). IEEE, New York","DOI":"10.1109\/CloudNet.2016.9"},{"key":"176_CR27","doi-asserted-by":"publisher","first-page":"28","DOI":"10.1109\/MNET.2016.1600109NM","volume":"30","author":"Peng Zhang","year":"2016","unstructured":"Zhang Peng, Wang Huanzhao, Chengchen Hu, Lin Chuang (2016) On denial of service attacks in software defined networks. IEEE Netw 30:28\u201333","journal-title":"IEEE Netw"},{"key":"176_CR28","doi-asserted-by":"crossref","unstructured":"Wang H, Xu L, Gu G (2015) Floodguard: a dos attack prevention extension in software-defined networks. In: 45th annual IEEE\/IFIP international conference on dependable systems and networks (DSN). IEEE, New York","DOI":"10.1109\/DSN.2015.27"},{"key":"176_CR29","doi-asserted-by":"publisher","first-page":"82","DOI":"10.1016\/j.comnet.2018.05.012","volume":"141","author":"H Wang","year":"2018","unstructured":"Wang H, Xu H, Huang L, Wang J, Yang X (2018) Load-balancing routing in software defined networks with multiple controllers. Comput Netw 141:82\u201391","journal-title":"Comput Netw"},{"key":"176_CR30","doi-asserted-by":"publisher","first-page":"3549","DOI":"10.1007\/s11277-016-3790-y","volume":"94","author":"YW Ma","year":"2017","unstructured":"Ma YW, Chen JL, Tsai YH, Cheng KH, Hung WC (2017) Load-balancing multiple controllers mechanism for software-defined networking. Wireless Pers Commun 94:3549\u20133574","journal-title":"Wireless Pers Commun"},{"key":"176_CR31","unstructured":"Ganesh S, Ranjani S (2015) Dynamic load balancing using software defined networks. In: International conference on current trends in advanced computing (ICCTAC)"},{"key":"176_CR32","unstructured":"Mininet: an instant virtual network on your laptop (or other PC). http:\/\/mininet.org\/. Accessed 31 July 2018"}],"container-title":["Human-centric Computing and Information Sciences"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s13673-019-0176-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1186\/s13673-019-0176-7\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s13673-019-0176-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,7,30]],"date-time":"2021-07-30T11:35:57Z","timestamp":1627644957000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1186\/s13673-019-0176-7"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,5,1]]},"references-count":33,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2019,12]]}},"alternative-id":["176"],"URL":"https:\/\/doi.org\/10.1186\/s13673-019-0176-7","relation":{},"ISSN":["2192-1962"],"issn-type":[{"type":"electronic","value":"2192-1962"}],"subject":[],"published":{"date-parts":[[2019,5,1]]},"assertion":[{"value":"15 December 2018","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"25 March 2019","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"1 May 2019","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}],"article-number":"16"}}