A study on securing software defined networks

Ur Rasool, Raihan and Wang, Hua and Rafique, Wajid and Yong, Jianming and Cao, Jinli (2017) A study on securing software defined networks. In: 18th International Conference on Web Information Systems Engineering - WISE 2017, 7-11 Oct 2017, Puschino, Russia.

Abstract

Most of the IT infrastructure across the globe is virtualized and is backed by Software Defined Networks (SDN). Hence, any threat to SDN’s core components would potentially mean to harm today’s Internet and the very fabric of utility computing. After thorough analysis, this study identifies Crossfire link flooding technique as one of the lethal attacks that can potentially target the link connecting the control plane to the data plane in SDNs. In such a situation, the control plane may get disconnected, resulting in the degradation of the performance of the whole network and service disruption. In this work we present a detailed comparative analysis of the link flooding mitigation techniques and propose a framework for effective defense. It comprises of a separate controller consisting of a flood detection module, a link listener module and a flood detection module, which will work together to detect and mitigate attacks and facilitate the normal flow of traffic. This paper serves as a first effort towards identifying and mitigating the crossfire LFA on the channel that connects control plane to data plane in SDNs. We expect that further optimizations in the proposed solution can bring remarkable results.


Statistics for USQ ePrint 33730
Statistics for this ePrint Item
Item Type: Conference or Workshop Item (Commonwealth Reporting Category E) (Paper)
Refereed: Yes
Item Status: Live Archive
Additional Information: Files associated with this item not able to be viewed due to copyright restrictions.
Faculty/School / Institute/Centre: Current - Faculty of Business, Education, Law and Arts - School of Management and Enterprise (1 July 2013 -)
Faculty/School / Institute/Centre: Current - Faculty of Business, Education, Law and Arts - School of Management and Enterprise (1 July 2013 -)
Date Deposited: 07 Nov 2019 00:56
Last Modified: 13 Feb 2020 04:00
Uncontrolled Keywords: Network security; Target link flooding; Software defined network
Fields of Research : 08 Information and Computing Sciences > 0806 Information Systems > 080699 Information Systems not elsewhere classified
Identification Number or DOI: 10.1007/978-3-319-68786-5
URI: http://eprints.usq.edu.au/id/eprint/33730

Actions (login required)

View Item Archive Repository Staff Only