An approach for detection of DDoS attacks against the control plane of software defined networks

Security of the infrastructure of Software De ned Net-works (SDN) is a challenging problem. SDN introduces new threat vectors in addition to those inherited from legacy networks. Thus, it becomes an attractive target for attackers. SDN separates the control and data planes, and migrates the control...

Full description

Autores:: Alvarez Arguello, Alejandro

Tipo de recurso:

Fecha de publicación:: 2017

Institución:: Universidad Nacional de Colombia

Repositorio:: Universidad Nacional de Colombia

Idioma:: spa

Description
Summary:	Security of the infrastructure of Software De ned Net-works (SDN) is a challenging problem. SDN introduces new threat vectors in addition to those inherited from legacy networks. Thus, it becomes an attractive target for attackers. SDN separates the control and data planes, and migrates the control functions to a logically centralized entity called controller which might be an attractive target for Denial-of-Service (DoS) and Distributed Denial-of-Service (DDoS) attacks. These attacks can be executed easily using open access tools and without requiring specialized or high performance hardware. According to the literature, the protection of the SDN infrastructure, specially against this kind of threats has not been widely addressed. Thus, we propose an algorithm to detect DDoS attacks against SDN control plane. Our algorithm considers both the OpenFlow trafc towards the control plane and speci c interfaces of OpenFlow switches (local perspective detection) or the whole agreggated OpenFlow trac on the control channel (global perspective detection). In our evaluation, we achieved a 99.94% of accuracy in detecting attacks with a 0.04% of false positives and 0.07% of false negatives.

An approach for detection of DDoS attacks against the control plane of software defined networks

Publicaciones similares