Investigation of application layer DDoS attacks in legacy and software-defined networks: A comprehensive review

Investigation of application layer DDoS attacks in legacy and software-defined networks: A comprehensive review

연구 분야: Networking

학회: International Journal of Information Security

Rapid growth of network technologies necessitates the evolution and reconfiguration of network policies. The rigid nature of legacy networks is a concern for service providers. This concern leads to the popularity, and wide acceptance of emerging network architecture software-defined networking (SDN). The legacy networking approach is vendor-specific, in the case of the devices required for configuration, which is quite restrictive and cumbersome. SDN has overcome this dependency or limitation by providing the capability of centralized control and programmability. However, the architecture of SDN itself faces various security issues. Among the security threats, distributed denial of service (DDoS) attack in the network is crucially indulged in shuttering the virtue of the organization. It is, however, getting popular as the number of users over the web is increasing staggeringly. In this paper, we have presented a comprehensive review of the articles related to the detection of the AL-DDoS (application layer DDoS) attacks in legacy and SDN approaches. The paper will cover DDoS attacks in legacy networks and SDN and the research protocols used to find related high-quality research articles. We have reviewed 124 related articles to select the most relevant studies. We also present the AL-DDoS attack taxonomy, articles classification based on network approach, testing environment, and datasets. Finally, we have marked the limitations of various proposed techniques in the literature related to our survey topic along with the research gaps for the future reference of researchers.