Implementasi Keamanan Jaringan Menggunakan Metode DPI Pada Arsitektur Jaringan Software Defined Network
Total View This Week0
Institut Teknologi Telkom Purwokerto
Taufiq, Fitriawan
T Technology (General) 
2021-12-07 06:58:54 
Abstract :
Software Defined Network (SDN) a new paradigm in a network. In contrast to conventional networks, the forwarding and control functions are on one device. SDN networks have separate forwarding and control functions so that they are on different devices. SDN network security, there are several factors that affect user security, there are several threats that can attack the control plane and data plane. To overcome these threats, the Intrusion Detection System (IDS), Intrusion Prevention System (IPS) and Deep Packet Inspection (DPI) methods are used. However, IDS and IPS are still lacking in terms of network performance. This problem can be solved by using the Deep Packet Inspection (DPI) method. DPI allows network administrators to monitor and analyze network traffic in real time. In this research, the implementation of the DPI method on the network was tested with a direct attack DOS SYN flood technique. The solution to overcome attacks is that DPI requires a controller to block attacks and DPI ntopng tools that detect attacks on SDN networks. Ntopng also overcomes the problem of false positives by dividing the rate of attacks detected on the SDN. This research shows that the throughput before the attack is 5.962 Mbits/sec to 0 Mbits/sec and the latency before the attack is 0.0754 second and during the attack it increases to 0.875 second. The decrease in throughput and the increase in latency were caused by a DoS attack which resulted in communication between hosts unable to run. Keywords : SDN, Deep Packet Inspection, Denial of service, Latency, Throughput 
Institution Info

Institut Teknologi Telkom Purwokerto