IRJET - DDOS Traffic Control using DSA Algorithm with Structure Information in SDN

Jan 8, 20210 likes4 views

This document discusses using a Digital Signature Algorithm (DSA) to prevent DNS-based Distributed Denial of Service (DDoS) attacks in software-defined networking (SDN). It proposes a framework that introduces intelligence to SDN switches to detect and mitigate DDoS attacks at the network layer. The DSA algorithm uses key-based authentication to avoid botnet intrusions. When an attack is detected, the proposed system can automatically block malicious IP addresses. It analyzes network traffic before and after attacks using tools like deep packet inspection and a filtering approach.

IRJET - DDOS Traffic Control using DSA Algorithm with Structure Information in SDN

The Internet of Things (IoT) alludes to the continually developing system of physical articles that component an IP address for web availability, and the correspondence that happens between these items and other Web empowered gadgets and frameworks. The security issues of the Internet of Things (IoT) are straight forwardly identified with the wide utilization of its framework. IoT securities and enhancing the design and several elements of this work showcases various security issues with respect to IoT and thinks of solutions for the issues under the advancements included. Here we are going to do a study of all the security issues existing in the Internet of Things (IoT) alongside an examination of the protection issues that an end-client might confront as an outcome of the spread of IoT. Most of the overview is centred around the security emerging out of the data trade innovations utilized as a part of Internet of Things. As a piece of IoTs, genuine concerns are raised over access of individual data relating to gadget and individual protection. This review tells about the security and protection issues of IoT.

EPLQ:Efficient privacy preserving spatial range query for smart phonesIRJET Journal

This document discusses an efficient privacy-preserving spatial range query solution for smart phones called EPLQ. EPLQ aims to preserve user privacy and ensure confidentiality of location-based service data when outsourced. It utilizes a novel predicate-only encryption scheme called IPRE and a privacy-preserving index tree called ss-tree. Experimental analysis shows EPLQ achieves high efficiency while providing security against known-sample and cipher text-only attacks. The literature review identifies previous work on related techniques but notes opportunities to implement dynamic range searching and further enhance data collection and user location security.

Software Defined Networking Architecture for Empowering Internet of Things & ...IRJET Journal

This document discusses software defined networking (SDN) and its potential to enhance security and empower the internet of things (IoT). It begins with an overview of SDN architecture and how it decouples the control plane from the data plane, allowing for centralized programmable control. This is seen as an improvement over traditional networking architectures which are not scalable and make configuration difficult. The document then reviews literature on using SDN to prevent attacks on IoT networks, provide visibility and control of traffic flows, and leverage SDN features to benefit security. In conclusion, SDN is presented as a promising approach for managing complex IoT environments and adapting dynamically to changing needs.

Wireless Networks Security in Jordan: A Field StudyIJNSA Journal

- The document summarizes a study that evaluated the security of wireless networks in Jordan through a process called "wardriving" where the researchers drove around with wireless network detection tools. - The results found that the majority (79.52%) of wireless networks tested were unsecured and vulnerable. Most networks used either low levels of encryption (68.67%) or no encryption at all (11.45%). - Nearly all networks broadcast the default SSID (92.17%), leaving them exposed to potential hackers since changing the SSID is a basic security precaution.

Sb securing-industrial-control-systems-with-fortinetIvan Carmona

This document provides an overview of how Fortinet solutions can help secure industrial control systems (ICS) in accordance with IEC 62443 standards. It describes common ICS vulnerabilities and challenges, and recommends implementing network segmentation, access controls, and multi-layered security using Fortinet products to monitor traffic and enforce security policies across different ICS zones. Specific Fortinet products mentioned include the FortiGate firewall, FortiAuthenticator for authentication, and FortiAnalyzer for logging and reporting.

IRJET - Site to Site Open VPNIRJET Journal

This document discusses site-to-site VPNs which establish secure connections between two VPN gateways located in different networks over the internet. Site-to-site VPNs encrypt communication data between the VPN gateways to ensure security and integrity without requiring VPN clients on user computers. They can be supported by protocols like IPsec in tunnel mode or PPTP/L2TP over IPSec. The document outlines motivations for site-to-site VPNs like ubiquitous coverage across the internet, scalability without requiring new leased lines as networks grow, and cost reduction compared to separate private networks.

Evaluation of enhanced security solutions inIJNSA Journal

Traditionally, 802.11-based networks that relied on wired equivalent protocol (WEP) were especially vulnerable to packet sniffing. Today, wireless networks are more prolific, and the monitoring devices used to find them are mobile and easy to access. Securing wireless networks can be difficult because these networks consist of radio transmitters and receivers, and anybody can listen, capture data and attempt to compromise it. In recent years, a range of technologies and mechanisms have helped makes networking more secure. This paper holistically evaluated various enhanced protocols proposed to solve WEP related authentication, confidentiality and integrity problems. It discovered that strength of each solution depends on how well the encryption, authentication and integrity techniques work. The work suggested using a Defence-in-Depth Strategy and integration of biometric solution in 802.11i. Comprehensive in-depth comparative analysis of each of the security mechanisms is driven by review of related work in WLAN security solutions.

IRJET- Local Security Enhancement and Intrusion Prevention in Android Dev...IRJET Journal

This document proposes a local security enhancement and intrusion prevention system for Android devices. It summarizes existing host-based intrusion detection systems and behavior-based intrusion prevention systems for Android smartphones. The proposed system uses net flow based clustering to identify anomalies and correlates with host-based features to detect malware intrusions. The goal is to provide versatile security for Android smartphones by detecting a wide range of attacks, including denial of service attacks and probing. The system aims to detect new attacks as well.

Developed security and privacy algorithms for cyber physical system IJECEIAES

Cyber-physical system (CPS) is a modern technology in the cyber world, and it integrates with wireless sensor network (WSN). This system is widely used in many applications such as a smart city, greenhouse, healthcare, and power grid. Therefore, the data security and integrity are necessary to ensure the highest level of protection and performance for such systems. In this paper, two sides security system for cyber-physical level is proposed to obtain security, privacy, and integrity. The first side is applied the secure sockets layer (SSL)/transport layer security (TLS) encryption protocol with the internet of things (IoT) based message queuing telemetry transport (MQTT) protocol to secure the connection and encrypt the data exchange between the system's parties. The second side proposes an algorithm to detect and prevent a denial of service (DoS) attack (hypertext transfer protocol (HTTP) post request) on a Web server. The experiment results show the superior performance of the proposed method to secure the CPS by detecting and preventing the cyber-attacks, which infect the Web servers. They also prove the implementation of security, privacy and integrity aspects on the CPS.

Intrusion detection system: classification, techniques and datasets to implementIRJET Journal

This document discusses intrusion detection systems, including their classification techniques and datasets used to implement them. It first defines intrusion detection and intrusion detection systems, explaining that they monitor networks and systems for malicious activity and policy violations. It then categorizes intrusion detection systems as either network-based, host-based, or physical-based. The document also classifies intrusion detection approaches as either signature-based (misuse detection) or anomaly-based detection. It reviews several data mining techniques used for intrusion detection, including classification methods like decision trees, k-nearest neighbors, naive Bayes, and support vector machines. It also discusses clustering techniques. Finally, it mentions some commonly used intrusion detection datasets.

Ak03402100217ijceronline

This document summarizes various soft computing techniques that can be used for intrusion detection, including fuzzy logic, graph-based approaches, and neural networks. Fuzzy logic can be used to classify parameters and detect anomalies by comparing normal and new fuzzy association rule sets. Graph-based approaches model network traffic as graphs of nodes and edges and use clustering algorithms to detect anomalies. Neural networks can be trained on audit log data to recognize normal behavior and detect deviations that may indicate attacks. These soft computing methods aim to improve on signature-based detection by learning patterns of normal network activity and detecting anomalies.

IRJET- Multimedia Content Security with Random Key Generation Approach in...IRJET Journal

This document proposes a double stage encryption algorithm to securely store multimedia content like images, audio, and video in the cloud. In the first stage, multimedia content is encrypted into ciphertext using AES symmetric encryption. The ciphertext is then encrypted again in the cloud using a randomly generated symmetric key for added security. This makes it difficult for attackers to extract the encryption key and recover the original multimedia content even if they obtain the ciphertext. The algorithm aims to provide security against side channel attacks in cloud computing through its use of random key generation and double encryption. It is described as having low complexity and wide applicability for safeguarding multimedia content in the cloud.

IRJET- Survey on SDN based Network Intrusion Detection System using Machi...IRJET Journal

This document summarizes a survey on using machine learning techniques in an SDN-based network intrusion detection system. It discusses how SDN allows centralized control and monitoring of network traffic. Machine learning and deep learning can be applied to the monitored traffic to detect anomalies and threats. Specifically, the document examines using long short-term memory neural networks and artificial neural networks to classify traffic and improve detection accuracy in the SDN environment. The goal is to increase the effectiveness of the network intrusion detection system at identifying security issues.

Iaona handbook for network security - draft rfc 0.4Ivan Carmona

This document is a draft version 0.4 of The IAONA Handbook for Network Security published by IAONA e.V. It was contributed to by various parties and organizations. The handbook aims to provide guidance on securing industrial automation networks, which require high availability and have more serious consequences from disruptions than typical office networks. It covers remote access methods, defining security terms and categories, descriptions of common network protocols and services, and a security survey.

IRJET- Crypto-Currencies How Secure are they?IRJET Journal

This document discusses the security of cryptocurrencies. It begins by defining cryptocurrency and explaining how cryptocurrency transactions work using blockchain technology. It then discusses some of the key properties of cryptocurrencies like irreversibility, pseudonymity, and controlled supply. The document outlines some benefits of cryptocurrencies like lack of third party seizure and anonymity, but also challenges like high energy usage and possibility of lost wallets. It then discusses some specific security issues with blockchain like its complexity, size of the network, and traditional scams. It concludes by covering security issues with cryptocurrencies like spoofing payment information, errors in user addresses, and loss of wallet files.

Trend Internet of ThingsDeris Stiawan

The document discusses trends and challenges in internet of things (IoT) from an information systems perspective. It describes IoT as involving the interconnection of heterogeneous networked entities through various communication patterns like human-to-human and machine-to-machine. The document outlines security and privacy as major issues in IoT due to the heterogeneity of devices, dynamicity of networks, and need to protect data. It reviews existing research that proposes solutions for these issues but identifies drawbacks like lack of testing on real heterogeneous devices and not addressing communication between different devices.

Detection of Rogue Access Point in WLAN using Hopfield Neural Network IJECEIAES

The serious issue in the field of wireless communication is the security and how an organization implements the steps against security breach. The major attack on any organization is Man in the Middle attack which is difficult to manage. This attack leads to number of unauthorized access points, called rogue access points which are not detected easily. In this paper, we proposed a Hopfield Neural Network approach for an automatic detection of these rogue access points in wireless networking. Here, we store the passwords of the authentic devices in the weight matrix format and match the patterns at the time of login. Simulation experiment shows that this method is more secure than the traditional one in WLAN.

A Novel SDN Architecture for IoT Securityijtsrd

Describes the term Internet of Things IoT security architecture based on Software Defined Networking SDN . In this context, building on SDN works with or without infrastructure. This is called the SDN domain. This work describes the mechanics of the proposed architecture and reduces the chances of using SDN to achieve more effective and flexible network security. It outlined the issues associated with current SDN security applications and introduced a new IoT system plan. This document has discussed the management of Internet access for specific networks and monitoring of global traffic. Finally, it describes the choice of architecture for SDN using OpenFlow and discusses the resulting results. M. Silambarasan | B. Michael Vinoline Rinoj | V. Karthik ""A Novel SDN Architecture for IoT Security"" Published in International Journal of Trend in Scientific Research and Development (ijtsrd), ISSN: 2456-6470, Volume-4 | Issue-2 , February 2020, URL: https://www.ijtsrd.com/papers/ijtsrd29908.pdf Paper Url : https://www.ijtsrd.com/engineering/electronics-and-communication-engineering/29908/a-novel-sdn-architecture-for-iot-security/m-silambarasan

IRJET- Review on “Using Big Data to Defend Machines against Network Attacks”IRJET Journal

This document presents a review of a system called AI2 that uses machine learning and big data to defend against network attacks in real-time. The system has four key aspects: 1) a big data analytics platform to analyze network behavior, 2) an outlier detection system to identify abnormal behavior, 3) a mechanism for security analysts to provide feedback, and 4) a supervised learning module. It aims to overcome limitations of traditional rule-based security systems by combining machine learning and analyst intuition to more accurately detect new and unknown attacks.

Intrusion detection and anomaly detection system using sequential pattern miningeSAT Journals

Abstract Nowadays the security methods from password protected access up to firewalls which are used to secure the data as well as the networks from attackers. Several times these types of security methods are not enough to protect data. We can consider the use of Intrusion Detection Systems (IDS) is the one way to secure the data on critical systems. Most of the research work is going on the effectiveness and exactness of the intrusion detection, but these attempts are for the detection of the intrusions at the operating system and network level only. It is unable to detect the unexpected behavior of systems due to malicious transactions in databases. The method used for spotting any interferes on the information in the form of database known as database intrusion detection. It relies on enlisting the execution of a transaction. After that, if the recognized pattern is aside from those regular patterns actual is considered as an intrusion. But the identified problem with this process is that the accuracy algorithm which is used may not identify entire patterns. This type of challenges can affect in two ways. 1) Missing of the database with regular patterns. 2) The detection process neglects some new patterns. Therefore we proposed sequential data mining method by using new Modified Apriori Algorithm. The algorithm upturns the accurateness and rate of pattern detection by the process. The Apriori algorithm with modifications is used in the proposed model. Keywords — Anomaly Detection, Modified Apriori Algorithm, Misuse detection, Sequential Pattern Mining

Cisco SAFE_Wireless LAN Security in Depth v2LinkedIn

This document provides a summary of best practices for designing and implementing secure wireless LANs (WLANs) using elements of Cisco's SAFE (Secure Access For Enterprise) Blueprint for network security. It discusses various WLAN design options for large, medium and small networks as well as remote users. The document outlines security risks of WLANs such as unauthorized access, interference, spoofing of identities, and denial of service attacks. It also discusses weaknesses in the existing 802.11 security standards and the need for more robust authentication, encryption, and key management to secure WLANs.

Security Technique and Congestion Avoidance in Mesh Networkijtsrd

Security in wireless network is one of the prime concern in todays Information Age, where information is an asset not only to an organisation but also to an individual. Security to a great extent is able to protect the network from various unauthorized attacks. On the other side implementation of security mechanisms also causes an overhead in terms of increased load in the network. Further the increased load in the network paves path to congestion which degrades the performance of the wireless network. In this paper we try to highlight various challenges pertaining to security in mesh networks and the ways of reducing security threats. We propose an improved version of AODV which has a congestion avoidance mechanism. We also use a security technique called PGP for enhanced security of Mesh network. Mankiran Kaur | Jagjit Kaur"Security Technique and Congestion Avoidance in Mesh Network" Published in International Journal of Trend in Scientific Research and Development (ijtsrd), ISSN: 2456-6470, Volume-1 | Issue-6 , October 2017, URL: http://www.ijtsrd.com/papers/ijtsrd4690.pdf http://www.ijtsrd.com/engineering/computer-engineering/4690/security-technique-and-congestion-avoidance-in-mesh-network/mankiran-kaur

IRJET- Security Analysis and Improvements to IoT Communication Protocols ...IRJET Journal

This document discusses security issues with the Constrained Application Protocol (CoAP) which is commonly used for Internet of Things (IoT) communication. It first provides background on CoAP, including its architecture and use of Datagram Transport Layer Security (DTLS) for security. However, the document notes that while DTLS provides some security, it is not fully sufficient to protect data at large volumes. The document then reviews literature on security issues at different layers of IoT systems, such as perception, physical, and network layers. Specific attacks discussed include jamming, node tampering, man-in-the-middle, denial of service, and eavesdropping. The aim of the paper is to analyze CoAP security

IRJET- Research Paper Firewall- Prevent Unauthorized UsersIRJET Journal

The document discusses firewall technologies that are commonly used to prevent unauthorized access to private networks connected to the Internet. It describes several types of firewalls including packet filtering firewalls, application gateways, circuit-level gateways, and proxy servers. While firewalls provide important security, they have some limitations such as not being able to fully protect against virus attacks or insider threats from authorized users. Therefore, using different firewall technologies together can help develop a more secure network.

The authenticated network architectureMotty Ben Atia

This document introduces the Authenticated Network Architecture (ANA) approach for network security. ANA is based on authenticating all network users and associating each with specific access entitlements. For example, guests only get internet access, contractors access discrete resources, and employees broader network access. The document outlines how ANA provides a more dynamic approach than previous security designs by authenticating and authorizing all users. It discusses best practices, considerations for deployment, and how to migrate existing designs to the ANA framework. The goal of ANA is to improve security by centrally managing user identities and access policies across the distributed enforcement points in modern complex networks.

SecuringAWirelessNetwork_CapstoneCecil Sellars

This document provides information for securing the wireless network of Necessary Evil, a small insurance company. Cecil Sellars proposes adjusting the wireless access point's default settings, such as changing the SSID and enabling WPA2 authentication. The project also involves physically securing the access point in a locked closet and educating employees on security best practices. Cecil researched methods used by other companies, including changing SSIDs, enabling WPA2, locking away hardware, and conducting vulnerability assessments. The project aims to protect customers' sensitive personal information by locking down the wireless network from internal and external threats.

Ijnsa050208IJNSA Journal

IRJET- Software Defined Network: DDOS Attack DetectionIRJET Journal

This document discusses software defined networks (SDNs) and detecting distributed denial-of-service (DDoS) attacks in SDNs. It provides background on SDN architecture and how DDoS attacks work. The paper aims to address risks of DDoS attacks in SDNs and focuses on detection. It describes existing DDoS attack techniques and solutions. The document proposes using algorithms like TCM-KNN and DPTCM-KNN for detection of attacks in network traffic flows, and compares the two algorithms using parameters like packet length and response time.

IRJET- An Intrusion Detection and Protection System by using Data Mining ...IRJET Journal

This document proposes an Internal Intrusion Detection and Protection System (IIDPS) to detect insider attacks by analyzing system calls (SCs) using data mining and forensic techniques. The IIDPS creates personal profiles for each user to track their computer usage behaviors over time. When a user logs in, the IIDPS compares their current behaviors to the patterns in their personal profile to determine if they are the legitimate account holder or an unauthorized insider attacker. The IIDPS aims to more accurately authenticate users and detect insider threats compared to existing systems that rely only on usernames and passwords.

INTRUSION DETECTION SYSTEMIRJET Journal

1. The document discusses intrusion detection systems and proposes a cluster-based intrusion detection system for wireless sensor networks. 2. It proposes a multi-level intrusion detection architecture with detection at both the cluster head and network-wide levels. 3. The proposed system would detect intrusions through anomaly detection and has been evaluated through a survey of 50 experts in the field.

More Related Content

What's hot (19)

Developed security and privacy algorithms for cyber physical system IJECEIAES

Intrusion detection system: classification, techniques and datasets to implementIRJET Journal

Ak03402100217ijceronline

IRJET- Multimedia Content Security with Random Key Generation Approach in...IRJET Journal

IRJET- Survey on SDN based Network Intrusion Detection System using Machi...IRJET Journal

Iaona handbook for network security - draft rfc 0.4Ivan Carmona

IRJET- Crypto-Currencies How Secure are they?IRJET Journal

Trend Internet of ThingsDeris Stiawan

Detection of Rogue Access Point in WLAN using Hopfield Neural Network IJECEIAES

A Novel SDN Architecture for IoT Securityijtsrd

IRJET- Review on “Using Big Data to Defend Machines against Network Attacks”IRJET Journal

Intrusion detection and anomaly detection system using sequential pattern miningeSAT Journals

Cisco SAFE_Wireless LAN Security in Depth v2LinkedIn

Security Technique and Congestion Avoidance in Mesh Networkijtsrd

IRJET- Security Analysis and Improvements to IoT Communication Protocols ...IRJET Journal

IRJET- Research Paper Firewall- Prevent Unauthorized UsersIRJET Journal

The authenticated network architectureMotty Ben Atia

SecuringAWirelessNetwork_CapstoneCecil Sellars

Ijnsa050208IJNSA Journal

Developed security and privacy algorithms for cyber physical system IJECEIAES

Intrusion detection system: classification, techniques and datasets to implementIRJET Journal

Ak03402100217ijceronline

IRJET- Multimedia Content Security with Random Key Generation Approach in...IRJET Journal

IRJET- Survey on SDN based Network Intrusion Detection System using Machi...IRJET Journal

Iaona handbook for network security - draft rfc 0.4Ivan Carmona

IRJET- Crypto-Currencies How Secure are they?IRJET Journal

Trend Internet of ThingsDeris Stiawan

Detection of Rogue Access Point in WLAN using Hopfield Neural Network IJECEIAES

A Novel SDN Architecture for IoT Securityijtsrd

IRJET- Review on “Using Big Data to Defend Machines against Network Attacks”IRJET Journal

Intrusion detection and anomaly detection system using sequential pattern miningeSAT Journals

Cisco SAFE_Wireless LAN Security in Depth v2LinkedIn

Security Technique and Congestion Avoidance in Mesh Networkijtsrd

IRJET- Security Analysis and Improvements to IoT Communication Protocols ...IRJET Journal

IRJET- Research Paper Firewall- Prevent Unauthorized UsersIRJET Journal

The authenticated network architectureMotty Ben Atia

SecuringAWirelessNetwork_CapstoneCecil Sellars

Ijnsa050208IJNSA Journal

Similar to IRJET - DDOS Traffic Control using DSA Algorithm with Structure Information in SDN (20)

IRJET- Software Defined Network: DDOS Attack DetectionIRJET Journal

IRJET- An Intrusion Detection and Protection System by using Data Mining ...IRJET Journal

INTRUSION DETECTION SYSTEMIRJET Journal

A new algorithm to enhance security against cyber threats for internet of thi...IJECEIAES

One major problem is detecting the unsuitability of traffic caused by a distributed denial of services (DDoS) attack produced by third party nodes, such as smart phones and other handheld Wi-Fi devices. During the transmission between the devices, there are rising in the number of cyber attacks on systems by using negligible packets, which lead to suspension of the services between source and destination, and can find the vulnerabilities on the network. These vulnerable issues have led to a reduction in the reliability of networks and a reduction in consumer confidence. In this paper, we will introduce a new algorithm called rout attack with detection algorithm (RAWD) to reduce the affect of any attack by checking the packet injection, and to avoid number of cyber attacks being received by the destination and transferred through a determined path or alternative path based on the problem. The proposed algorithm will forward the real time traffic to the required destination from a new alternative backup path which is computed by it before the attacked occurred. The results have showed an improvement when the attack occurred and the alternative path has used to make sure the continuity of receiving the data to the main destination without any affection.

Deep Learning and Big Data technologies for IoT SecurityIRJET Journal

The document discusses using deep learning and big data technologies to improve security for Internet of Things (IoT) devices and networks. Specifically, it proposes using deep learning models to analyze large amounts of data from IoT sensors to better detect and classify security threats. This can help identify attacks like botnets and distributed denial-of-service (DDoS) attacks. The document also outlines some common IoT security challenges and how approaches like Apache Hadoop, Spark, and Storm can process large volumes of IoT data to improve real-time monitoring and threat prevention.

A Comparative Study of Deep Learning Approaches for Network Intrusion Detecti...IRJET Journal

This document presents a comparative study of deep learning approaches for network intrusion detection. It employs deep neural networks to predict attacks on network intrusion detection systems using the KDD Cup-99 dataset. A DNN with 3 layers demonstrated superior performance compared to other machine learning algorithms and DNNs with varying layers. The study finds that deep learning techniques can function at a superhuman level when combined with intrusion detection systems due to their ability to adapt to new data and detect novel attacks.

Software Defined Network Based Internet on thing Eco System for ShopfloorIRJET Journal

This document proposes a software defined network (SDN) based architecture for internet of things (IoT) devices on a manufacturing shop floor. It aims to achieve high availability, security, and real-time data transfer. The SDN architecture separates the control plane from the data plane, allowing for centralized, programmable network management. IoT sensors, actuators, and mobile devices are integrated with machines to collect and transmit production data. The proposed system uses SDN to securely connect IoT devices to cloud servers via an IoT controller, addressing challenges around IoT security, scalability, and data handling on the manufacturing network.

IRJET- Enhancing Network Security by Modified Secure Dynamic Path IdentifiersIRJET Journal

This document summarizes a research paper that proposes a new framework called Modified Secure Dynamic Path Identifiers (MDSPID) to enhance network security and prevent distributed denial-of-service (DDoS) flooding attacks. The MDSPID framework uses dynamically generated secure path identifiers that are verified with each packet, unlike existing static path identifiers that are insecure. It describes the MDSPID generation process, a timestamp mechanism for authentication, a two-level packet verification architecture, an experimental implementation in NS2 simulator, and performance analysis showing MDSPID improves metrics like packet delivery ratio and detection ratio while reducing packet loss and end-to-end delay compared to other approaches. The research aims to address security issues with static path identifiers and

IRJET - A Genetic Approach for Reversible Database Watermarking using Fingerp...IRJET Journal

This document proposes a reversible database watermarking technique called Genetic Fingerprinting Algorithm using Histogram shifting (GFAHS). The technique encrypts the original database along with the owner's fingerprint and watermarks them together. This protects the original content from illegal ownership violations while allowing recovery of the original data. The technique uses a genetic algorithm to randomly partition and distribute the database among team members for collaborative work. When work is complete, updates are sent to team leaders and combined and forwarded to managers, who use biometric authentication to view the results. The aim is to provide a secure and robust system for group sharing of data on databases in the cloud.

Lightweight Cryptography Algorithms for Security of IoT Devices: A SurveyIRJET Journal

This document discusses lightweight cryptography algorithms for security in Internet of Things (IoT) devices. It provides an overview of IoT architecture and applications. It then discusses the need for lightweight cryptography due to constraints of IoT devices. Various lightweight cryptography algorithms are described, including symmetric key and asymmetric key algorithms. Challenges of lightweight cryptography are also outlined. Related work studying lightweight cryptography algorithms for IoT security is reviewed. The document analyzes and compares various lightweight cryptography algorithms suitable for securing resource-constrained IoT devices.

Cybersecurity Threat Detection of Anomaly Based DDoS Attack Using Machine Lea...IRJET Journal

This document discusses machine learning techniques for detecting distributed denial of service (DDoS) attacks. It reviews related work applying methods like decision trees, support vector machines, naive Bayes, and deep learning to identify DDoS attacks based on network traffic patterns. The document evaluates these algorithms based on accuracy metrics and processing time. It also explores feature selection and parameter tuning to optimize model performance and training efficiency for detecting DDoS attacks.

IRJET- Phishdect & Mitigator: SDN based Phishing Attack DetectionIRJET Journal

The document proposes a new system called PhishDect and Mitigator to detect and mitigate phishing attacks using software-defined networking (SDN). It uses deep packet inspection techniques and a convolutional neural network (CNN) to classify phishing signatures. Traffic is directed through either a "store and forward" or "forward and inspect" mode. In store and forward mode, packets are stored and inspected before forwarding. In forward and inspect mode, packets are forwarded first and then a copy is inspected. The system aims to overcome limitations of existing phishing detection methods.

Performance Analysis of Wireless Trusted Software Defined NetworksIRJET Journal

This document analyzes the performance of wireless trusted software defined networks (SDNs) by considering metrics like energy consumption, throughput, end-to-end delay, and packet delivery ratio. It finds that SDNs perform better than conventional networks without SDN capabilities. It also compares the energy consumption of different SDN topology models. The key findings are that SDNs provide centralized control, programmability, and flexibility that improve performance compared to traditional networks. Additionally, different SDN topology models have varying levels of energy efficiency.

Literature Review on DDOS Attacks Detection Using SVM algorithm.IRJET Journal

This document provides a literature review on detecting DDoS attacks using machine learning algorithms like SVM in SDN environments. It summarizes 10 research papers on this topic, identifying gaps such as specifying the number of clusters in advance for detection and dealing with non-linearly separable training data for SVM. The document also describes using SVM and advanced SVM techniques on the KDD99 and CIC-IDS 2018 datasets to classify network traffic as normal or malicious in an SDN environment, finding SVM provides better accuracy than other algorithms. It concludes SVM works well in their simulated environment and plan to implement advanced SVM to gain higher accuracy in detecting DDoS attacks.

DNS Data Exfiltration DetectionIRJET Journal

This document discusses how hackers can exploit the Domain Name System (DNS) protocol to exfiltrate sensitive data from networks and systems. It describes how hackers can encode and embed data in DNS queries and responses in order to stealthily transmit the data to rogue DNS servers. The document also explains how hackers can use DNS tunneling to inject malicious code and payloads into internal networks. It states that DNS is an effective attack vector because most organizations do not inspect or filter DNS traffic. The document advocates integrating DNS monitoring solutions with endpoint security and network access control systems to automatically detect and remediate DNS-based data exfiltration and infiltration attacks.

Crypto Mechanism to Provide Secure to the IOT DataIRJET Journal

The document proposes a crypto mechanism to securely store IoT data in the cloud. It discusses challenges with securing IoT data due to resource constraints of IoT devices and limitations of traditional encryption algorithms. The proposed model includes modules for authentication, data intake/encryption, management, and decryption. It establishes secure connections between IoT devices, cloud and users. Data from IoT devices is encrypted before storing in the cloud database. Encrypted data is decrypted and displayed to users after authentication. The model aims to securely store IoT data in the cloud while addressing issues like inference attacks and efficiently utilizing resources.

IRJET- Detecting Data Leakage and Implementing Security Measures in Cloud Com...IRJET Journal

This document proposes a methodology called DROPS (Division and Replication of Data in the Cloud for Optimal Performance and Security) to address security and performance issues with data stored in the cloud. The DROPS methodology divides files stored in the cloud into multiple fragments and replicates each fragment, storing the fragments across different nodes. This makes it difficult for attackers to access full files even if they breach individual nodes. The document also discusses existing approaches like watermarking and introducing fake data, and their limitations. It proposes using a technique called T-Coloring to separate nodes storing fragments and increase the distance between fragments to block intruders.

IRJET-An Efficient Model for Detecting and Identifying Cyber Attacks in Wirel...IRJET Journal

This document proposes a deep learning model for detecting and identifying cyber attacks in wireless networks. The model uses an autoencoder and random forest classifier to extract features from network data and classify behaviors as malicious or benign. The model was evaluated on the NSL KDD Cup dataset and achieved an accuracy of 82% in detecting attacks. Key aspects of the model include using a non-symmetric deep autoencoder for feature extraction and dimensionality reduction, identifying and removing low frequency attacks from the data, and evaluating performance metrics like detection rate and precision.

IRJET- An Efficient Model for Detecting and Identifying Cyber Attacks in Wire...IRJET Journal

This document proposes an efficient model for detecting and identifying cyber attacks in wireless networks using deep learning approaches. The model is designed to perform feature selection and classification on network data to detect malicious behavior. The model architecture includes input, hidden, and output layers for feature extraction, and uses a random forest classifier trained on the NSL KDD Cup dataset. Experimental results using the KDD Cup and NSL-KDD datasets show the model can accurately classify network behaviors and detect cyber attacks with over 82% accuracy.

An Analysis on Software Defined Wireless Network using Stride ModelIRJET Journal

This document analyzes the security of two software defined wireless network monitoring tools, sFlow and FlowVisor, using the STRIDE threat model. It finds that sFlow requires secure external deployment and storage of flow data to ensure security, while FlowVisor has built-in access control but isolated flows still require additional security. A comparison shows sFlow is open-source while FlowVisor provides network virtualization, and both could benefit from further vulnerability mitigation. The STRIDE analysis identifies threats including spoofing, tampering, denial of service, and privilege escalation that must be addressed for these tools to securely monitor software defined wireless networks.