Abstract

In any communication network, for regular maintenance the service provider, needs to manage individual device by login into the specific device. This can be avoided by using Software Defined Networks which gives easy access and the facility of core network management to service provider. This is achieved by separating Control and Data plane of the hardware devices. Using SDN Controller managing the devices is simpler, but it is exposed to attacks making the system vulnerable. The most prominent attacks for SDN are DDoS attack and ARP Spoofing attack. Detecting these attacks at early stage is necessary for every communication network. This paper focuses on designing a method to detect DDoS attack by investigating various network parameters. It is observed that it is possible to detect DDoS attack by monitoring specific parameters CPU process, CPU system, number packets, etc. An effective mitigating strategy can be devised based on these parameters.