IDEAS home Printed from https://ideas.repec.org/a/gam/jftint/v17y2025i4p136-d1618190.html
   My bibliography  Save this article

Distributed Denial of Service Attack Detection in Software-Defined Networks Using Decision Tree Algorithms

Author

Listed:
  • Ali Zaman

    (College of Computing and Information Sciences, Karachi Institute of Economics and Technology, Karachi 75190, Pakistan)

  • Salman A. Khan

    (College of Computing and Information Sciences, Karachi Institute of Economics and Technology, Karachi 75190, Pakistan)

  • Nazeeruddin Mohammad

    (Cybersecurity Center, Prince Mohammad bin Fahd University, Al-Khobar 31952, Saudi Arabia)

  • Abdelhamied A. Ateya

    (EIAS: Data Science and Blockchain Laboratory, College of Computer and Information Sciences, Prince Sultan University, Riyadh 11586, Saudi Arabia)

  • Sadique Ahmad

    (EIAS: Data Science and Blockchain Laboratory, College of Computer and Information Sciences, Prince Sultan University, Riyadh 11586, Saudi Arabia)

  • Mohammed A. ElAffendi

    (EIAS: Data Science and Blockchain Laboratory, College of Computer and Information Sciences, Prince Sultan University, Riyadh 11586, Saudi Arabia)

Abstract

A software-defined network (SDN) is a new architecture approach for constructing and maintaining networks with the main goal of making the network open and programmable. This allows the achievement of specific network behavior by updating and installing software, instead of making physical changes to the network. Thus, SDNs allow far more flexibility and maintainability compared to conventional device-dependent architectures. Unfortunately, like their predecessors, SDNs are prone to distributed denial of service (DDoS) attacks. These attack paralyze networks by flooding the controller with bogus requests. The answer to this problem is to ignore machines in the network sending these requests. This can be achieved by incorporating classification algorithms that can distinguish between genuine and bogus requests. There is abundant literature on the application of such algorithms on conventional networks. However, because SDNs are relatively new, they lack such abundance both in terms of novel algorithms and effective datasets when it comes to DDoS attack detection. To address these issues, the present study analyzes several variants of the decision tree algorithm for detection of DDoS attacks while using two recently proposed datasets for SDNs. The study finds that a decision tree constructed with a hill climbing approach, termed the greedy decision tree, iteratively adds features on the basis of model performance and provides a simpler and more effective strategy for the detection of DDoS attacks in SDNs when compared with recently proposed schemes in the literature. Furthermore, stability analysis of the greedy decision tree provides useful insights about the performance of the algorithm. One edge that greedy decision tree has over several other methods is its enhanced interpretability in conjunction with higher accuracy.

Suggested Citation

  • Ali Zaman & Salman A. Khan & Nazeeruddin Mohammad & Abdelhamied A. Ateya & Sadique Ahmad & Mohammed A. ElAffendi, 2025. "Distributed Denial of Service Attack Detection in Software-Defined Networks Using Decision Tree Algorithms," Future Internet, MDPI, vol. 17(4), pages 1-25, March.
    • Handle: RePEc:gam:jftint:v:17:y:2025:i:4:p:136-:d:1618190
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/1999-5903/17/4/136/pdf
    Download Restriction: no
    File URL: https://www.mdpi.com/1999-5903/17/4/136/
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. Saad Ahmed Dheyab & Shaymaa Mohammed Abdulameer & Salama Mostafa, 2022. "Efficient Machine Learning Model for DDoS Detection System Based on Dimensionality Reduction," Acta Informatica Pragensia, Prague University of Economics and Business, vol. 2022(3), pages 348-360.
    2. Blum, Diego & Holling, Heinz, 2017. "Spearman's law of diminishing returns. A meta-analysis," Intelligence, Elsevier, vol. 65(C), pages 60-66.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Coyle, Thomas R., 2022. "Sex differences in spatial and mechanical tilt: Support for investment theories," Intelligence, Elsevier, vol. 95(C).
    2. Sumin Kim & Benson Teck Heng Lim & Bee Lan Oo, 2022. "Energy Consumption and Carbon Emissions of Mandatory Green Certified Offices in Australia: Evidence and Lessons Learnt across 2011–2020," Sustainability, MDPI, vol. 14(21), pages 1-18, October.
    3. Coyle, Thomas R., 2022. "Processing speed mediates the development of tech tilt and academic tilt in adolescence," Intelligence, Elsevier, vol. 94(C).
    4. Woodley of Menie, Michael A. & Peñaherrera-Aguirre, Mateo & Sarraf, Matthew A., 2022. "Signs of a Flynn effect in rodents? Secular differentiation of the manifold of general cognitive ability in laboratory mice (Mus musculus) and Norwegian rats (Rattus norvegicus) over a century—Results," Intelligence, Elsevier, vol. 95(C).
    5. Egeland, Jonathan, 2022. "The ups and downs of intelligence: The co-occurrence model and its associated research program," Intelligence, Elsevier, vol. 92(C).
    6. Burgoyne, Alexander P. & Mashburn, Cody A. & Tsukahara, Jason S. & Engle, Randall W., 2022. "Attention control and process overlap theory: Searching for cognitive processes underpinning the positive manifold," Intelligence, Elsevier, vol. 91(C).
    7. Wai, Jonathan & Lakin, Joni M. & Kell, Harrison J., 2022. "Specific cognitive aptitudes and gifted samples," Intelligence, Elsevier, vol. 92(C).
    8. Coyle, Thomas R. & Greiff, Samuel, 2023. "Carbon is to life as g is to _____: A review of the contributions to the special issue on specific abilities in intelligence," Intelligence, Elsevier, vol. 101(C).
    9. Kolachev, Nikita & Kovaleva, Galina, 2023. "General intelligence in middle school students from different Russian regions: Results of PISA-like tests," Intelligence, Elsevier, vol. 98(C).
    10. Coyle, Thomas R., 2023. "Sex differences in tech tilt and academic tilt in adolescence: Processing speed mediates age-tilt relations," Intelligence, Elsevier, vol. 100(C).
    11. Feraco, Tommaso & Cona, Giorgia, 2022. "Differentiation of general and specific abilities in intelligence. A bifactor study of age and gender differentiation in 8- to 19-year-olds," Intelligence, Elsevier, vol. 94(C).

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jftint:v:17:y:2025:i:4:p:136-:d:1618190. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.