Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental Approach Galeano-Brajones, Jesús Carmona-Murillo, Javier Valenzuela Valdes, Juan Francisco Luna-Valero, Francisco Stateful SDN DoS DDoS Entropy Internet of Things Experimental evaluation The expected advent of the Internet of Things (IoT) has triggered a large demand of embedded devices, which envisions the autonomous interaction of sensors and actuators while offering all sort of smart services. However, these IoT devices are limited in computation, storage, and network capacity, which makes them easy to hack and compromise. To achieve secure development of IoT, it is necessary to engineer scalable security solutions optimized for the IoT ecosystem. To this end, Software Defined Networking (SDN) is a promising paradigm that serves as a pillar in the fifth generation of mobile systems (5G) that could help to detect and mitigate Denial of Service (DoS) and Distributed DoS (DDoS) threats. In this work, we propose to experimentally evaluate an entropy-based solution to detect and mitigate DoS and DDoS attacks in IoT scenarios using a stateful SDN data plane. The obtained results demonstrate for the first time the effectiveness of this technique targeting real IoT data traffic. 2020-04-15T11:51:31Z 2020-04-15T11:51:31Z 2020-02-03 journal article Galeano-Brajones, J.; Carmona-Murillo, J.; Valenzuela-Valdés, J.F.; Luna-Valero, F. Detection and Mitigation of DoS and DDoS Attacks in IoT-Based Stateful SDN: An Experimental Approach. Sensors 2020, 20, 816. [doi:10.3390/s20030816] http://hdl.handle.net/10481/61260 10.3390/s20030816 eng http://creativecommons.org/licenses/by/3.0/es/ open access Atribución 3.0 España MDPI