Mininet-IDS: A Step Towards Reproducible Research for Machine Learning Based Intrusion Detection Systems

Rana Uzair Ahmed; Muhammad Siraj Rathore

Authors

Rana Uzair Ahmed Capital University of Science & Technology, Islamabad, Pakistan
Muhammad Siraj Rathore Capital University of Science & Technology, Islamabad, Pakistan

Keywords:

Software Defined Networking (SDN), Intrusion Detection System (IDS), Mininet, Ryu Controller, Machine Learning, Network Security.

Abstract

Software-Defined Networking (SDN) has revolutionized network management by enabling more flexible, programmable, and controlled networks. However, the SDN controller can be a target for attacks that could bring down the entire network. In this context, intrusion detection systems (IDS) are essential for maintaining network security. Modern IDS are often enhanced with machine learning models to detect a range of network attacks. This process typically includes dataset preprocessing, model training, and integration of these models into network emulators like Mininet. However, this workflow can be complex and error-prone. To address these challenges, we present Mininet-IDS, a comprehensive command-line interface (CLI) tool that streamlines the process by offering integrated functionalities for dataset preprocessing, feature selection, model training, and deployment within the Mininet environment. Our tool simplifies the workflow by eliminating compatibility issues and ensuring reproducibility. We evaluate Mininet-IDS using the NSL-KDD dataset, training various machine learning models to detect DDoS attacks. Our results demonstrate the tool's efficiency and accuracy, making it a valuable resource for network security researchers to conduct experiments with minimal machine learning expertise.

References

Nisha Kumari and Kapil Kathuria. “Overview of SDN Building Foundations and Applications.” “Journal of Research in Science and Engineering” 2024, 6(7), 43–53.

Gulshan Kumar and Hamed Alqahtani. “Machine Learning Techniques for Intrusion Detection Systems in SDN-Recent Advances, Challenges and Future Directions” “Computer Modeling in Engineering & Sciences” 2023, 134(1), 89-119.

Nisha Ahuja, Gaurav Singal, Debajyoti Mukhopadhyay, and Neeraj Kumar. “Automated DDOS attack detection in software defined networking.” “Journal of Network and Computer Applications” 2021, 187, 103108.

Yousif Al-Dunainawi, Bilal R. Al-Kaseem, and Hamed S. Al-Raweshidy. “Optimized Artificial Intelligence Model for DDoS Detection in SDN Environment.” “IEEE Access” 2023, 11, 106733-106748.

Sabila Nawshin, Salekul Islam, and Swakkhar Shatabda. “PCA-ANN: Feature Selection Based Hybrid Intrusion Detection System in Software Defined Network.” “Journal of Intelligent & Fuzzy Systems” 2024, 1-18.

Tariq Emad Ali, Yung-Wey Chong, and Selvakumar Manickam. “Machine Learning Techniques to Detect a DDoS Attack in SDN: A Systematic Review” “Applied Sciences” 2023, 13(5), 3183.

Meryem Chouikik, Mariyam Ouaissa, Mariya Ouaissa, and Zakaria Boulouard. “Detection and Mitigation of DDoS Attacks in SDN Based Intrusion Detection System” “Bulletin of Electrical Engineering and Informatics” 2024, 13(4), 2750-2757.

Omar Jamal and Wesam S. Bhaya. “Intrusion Detection System for Cloud Based Software-Defined Networks.” “Journal of Physics Conference Series” 2021, 1804(1), 012007.

Oluwapelumi Fakolujo and Amna Qureshi. “Analysis of Detection Systems in a Software-Defined Network” “Intelligent Computing” 2023, Lecture Notes in Networks and Systems, 739, 1342–1363.

Elsayed Mahmoud Said, Le-Khac Nhien-An, Azer Marianne A. and Jurcut Anca D. “A Flow Based Anomaly Detection Approach with Feature Selection Method Against DDoS Attacks in SDNs” “IEEE Transactions on Cognitive Communications and Networking” 2022, Volume 8, Issue 4, pp. 1862-1880.

Neelam Gupta, Mashael Maashi, Sarvesh Tanwar, and Sumit Badotra. “A Comparative Study of Software Defined Networking Controllers Using Mininet.” “Electronics” 2022, 11(17): 2715.

https://mininet.org/ Mininet

https://ryu-sdn.org/ Ryu

Mossa Ghurab, Ghaleb Gaphari, Faisal Alshami, and Reem Alshamy. “A Detailed Analysis of Benchmark Datasets for Network Intrusion Detection System” 2021. “Asian Journal of Research in Computer Science” 2021, Volume 7, Issue 4, pp. 14-33.

https://www.unb.ca/cic/datasets/nsl.html NSL-KDD Dataset

G. Logeswari, S. Bose, and T. Anitha. “An Intrusion Detection System for SDN Using Machine Learning” “Intelligent Automation & Soft Computing” 2023, 35(1), 867-880.

Nguyen Thanh Thi and Reddi Vijay. “Deep Reinforcement Learning for Cyber Security” “IEEE Transactions on Neural Networks and Learning Systems” 2023. Volume 34, Issue 8, Pages 3779-3795.

Siyyal Shafqat Ali, Khuawar Faheem Yar, Saba Erum, Memon Abdul Latif, Shaikh Muhammad Raza. “Analyzing ML-Based IDS over Real-Traffic” “International Journal of Innovations in Science & Technology” 2022. Volume 4, Issue 3, Pages 621–640.

Mohsin Mayadah A. and Hamad Ali H. “Performance Evaluation of SDN DDoS Attack Detection and Mitigation Based Random Forest and K-Nearest Neighbors Machine Learning Algorithms” “Revue d'Intelligence Artificielle” 2022. Volume 36, Issue 2, Pages 233-240.

Alashhab Abdussalam Ahmed, Zahid Mohd Soperi, Isyaku Babangida, Elnour Asma Abbas, Nagmeldin Wamda, Abdelmaboud Abdelzahir, Abdullah Talal Ali Ahmed, and Maiwada Umar. “Enhancing DDoS Attack Detection and Mitigation in SDN Using an Ensemble Online Machine Learning Model” “IEEE Access” 2024, Volume 12, Pages 51630-51649.

Zewdie Temechu & Girma Anteneh. “IoT security and the role of AI/ML to combat emerging Cyber threats in Cloud Computing Environment” “Information Systems Journal” 2020, Volume 21, Issue 4, Pages 253-263.

Al-Ambusaidi Mohammed & Yinjun Zhang. “ML-IDS: an efficient ML-enabled intrusion detection system for securing IoT networks and applications” “Soft Computing” 2023, Volume 28, Issue 1, Pages 1765-1784.

https://github.com/ranauzairahmed/MininetIDS Mininet-IDS