SISTEM PENGAMANAN JARINGAN SDN DARI SERANGAN DDOS BERBASIS MULTI CONTROLLER DAN LOAD BALANCER

Husnul Ulfa, - (2024) SISTEM PENGAMANAN JARINGAN SDN DARI SERANGAN DDOS BERBASIS MULTI CONTROLLER DAN LOAD BALANCER. S1 thesis, Universitas Pendidikan Indonesia.

[img] Text
S_ SISTEL _2003204_ Title.pdf

Download (2MB)
[img] Text
S_ SISTEL_2003204_Chapter1.pdf

Download (1MB)
[img] Text
S_ SISTEL _2003204_Chapter2.pdf
Restricted to Staf Perpustakaan

Download (2MB)
[img] Text
S_ SISTEL_2003204_Chapter3.pdf

Download (2MB)
[img] Text
S_ SISTEL_2003204_Chapter4.pdf
Restricted to Staf Perpustakaan

Download (2MB)
[img] Text
S_ SISTEL_1801787_Chapter5.pdf

Download (1MB)
[img] Text
S_ SISTEL _1801787_Appendix.pdf
Restricted to Staf Perpustakaan

Download (2MB)
Official URL: https://repository.upi.edu/

Abstract

Serangan DDoS terhadap jaringan SDN mengakibatkan satu titik kegagalan yang berpotensi merusak kinerja keseluruhan jaringan. Single controller berpotensi mengalami buffer overload, yang menyebabkan kemacetan lalu lintas karena switch harus menunggu respon dari controller sebelum meneruskan paket jaringan. Penelitian ini mengimplementasikan keamanan dengan menggunakan pendekatan multi controller dan load balancer, untuk meningkatkan ketahanan jaringan SDN terhadap serangan DDoS. Sistem ini bekerja dengan cara mendistribusikan beban kerja dari controller utama ke controller back-up melalui load balancer ketika terdeteksi indikasi serangan DDoS. Indikasi serangan ditentukan berdasarkan nilai miss rate dari unique forwarding request yang melebihi threshold. Parameter pengujian penelitian ini mencakup responsivitas dan high availability jaringan. Pada kondisi serangan multi controller berhasil meningkatkan responsivitas yang lebih cepat 50,60% dibandingkan single controller yaitu 102,4%. Respons yang cepat, menunjukan pertahanan yang baik saat terjadi serangan dibandingkan dengan single controller. Latency multi controller mengalami penurunan 0,02% dibandingkan single controller. Hasil ini mengindikasikan bahwa latency multi controller pada saat terjadi serangan lebih efisien dalam menanggapi serangan dibandingkan single controller. Throughput multi controller mengalami kenaikan 28% dibandingkan single controller yaitu 21%. Jitter multi controller mengalami kenaikan 376% dibandingkan single controller. Hasil dari pendekatan ini terbukti mampu meningkatkan kehandalan, responsivitas dan kualitas trafik jaringan SDN saat menghadapi serangan DDoS. ----- DDoS attacks on SDN networks result in a potential single point of failure that could potentially disrupt the overall network performance. The single controller is prone to buffer overload, leading to traffic congestion as switches have to wait for responses from the controller before forwarding network packets. This research implements security using a multi-controller approach and a load balancer to enhance the SDN network's resilience against DDoS attacks. The system works by distributing workload from the main controller to backup controllers via a load balancer when DDoS attack indications are detected. Attack indications are determined based on the miss rate values of unique forwarding requests that exceed a threshold. The parameters tested in this research include network responsiveness and high availability. During attack conditions, the multi-controller successfully improved responsiveness by 50.60% faster compared to the single controller, which is 102.4%. The faster response demonstrates effective defense during attacks compared to the single controller. The latency of the multi-controller experienced a decrease of 0.02% compared to the single controller. This result indicates that the multi-controller latency is more efficient in responding to attacks compared to the single controller. The throughput of the multi-controller experienced an increase of 28% compared to the single controller, which is 21%. The jitter of the multi-controller experienced an increase of 376% compared to the single controller. The results of this approach have proven to enhance the reliability, responsiveness, and quality of SDN network traffic when facing DDoS attacks.

Item Type: Thesis (S1)
Additional Information: https://scholar.google.com/citations?hl=en&authuser=1&user=y8g8_GYAAAAJ ID SINTA PEMBIMBING GALURA MUHAMMAD SURANEGARA : 6703764 AHMAD FAUZI : 6122861
Uncontrolled Keywords: DDoS, Load Balancer, multi-controller, ketersedian overload DDoS, Load Balancer, multi-controller, availability overload
Subjects: L Education > L Education (General)
Divisions: UPI Kampus Purwakarta > S1 Sistem Telekomunikasi
Depositing User: husnul ulfa
Date Deposited: 30 Apr 2024 08:49
Last Modified: 30 Apr 2024 08:49
URI: http://repository.upi.edu/id/eprint/117097

Actions (login required)

View Item View Item