Enhancing SDN Security Through Machine Learning: A Comprehensive Review of Cyber-Attack Detection and Mitigation Approaches
摘要
Software-Defined Network (SDN) is a revolutionary approach in overall networking architecture, implementing separation between control and data planes. The idea of centralized control, however, exponentially enhances the attack surface area, thereby making SDN vulnerable to various cyber-attack threats. To address such threats, several innovative concepts, including Machine Learning techniques, are effectively employed to enhance SDN security by implementing automated attack detection and proactive mitigation measures. This paper provides a systematic review of machine learning techniques employed to enhance the security of SDN, based on cyber-attack studies published between 2020 and 2025. This review was conducted under dual themes : (i) Machine Learning strategies with respect to involved datasets, preprocessing, and performance measures, and (ii) attack characteristics concerning general aspects, such as involved SDN planes, attack type, and affected controllers. The outcome clearly indicates the robustness and limitations, as well as the research gaps, regarding more scalable and context-aware Machine Learning-based security systems in SDN environments.