Enhancing DDoS Attack Detection in Software Defined Networks with Deep Reinforcement Learning

Articles in Press

Document Type : Research Paper

Authors

Department of Computer Engineering, Yazd University, Yazd 8915818411, Iran.

10.22034/cmde.2025.65880.3056

Abstract

The rapid growth of Software Defined Networking (SDN) offers significant benefits in network flexibility, management,
and scalability. However, the centralization of control in SDN poses substantial security risks, especially from
Distributed Denial of Service (DDoS) attacks. Traditional detection mechanisms often fall short due to the evolving
nature of these threats. This paper introduces a novel Deep Reinforcement Learning (DRL) technique to enhance
DDoS attack detection and mitigation in SDN environments. By leveraging DRL’s adaptive learning capabilities,
the proposed model continuously learns and adapts to new attack patterns, providing robust defense. The model
employs a combination of Autoencoder (AE) and Bidirectional Gated Recurrent Unit (BGRU) to analyze traffic
patterns and detect anomalies effectively. Experimental results, using a comprehensive dataset from real network
traffic, demonstrate the model’s superior accuracy, higher detection rate, and reduced false-positive rates compared
to existing methods. Additionally, the proposed technique incorporates a trust value mechanism to mitigate detected
attacks, ensuring enhanced security and reliability for SDN networks.

Keywords

Main Subjects

Computational Methods for Differential Equations

Articles in Press, Accepted Manuscript
Available Online from 31 December 2025

Files

History

  • Receive Date: 14 February 2025
  • Revise Date: 11 November 2025
  • Accept Date: 20 December 2025

Share

How to cite

Statistics