An approach for detection of DDoS attacks against the control plane of software defined networks
Security of the infrastructure of Software De ned Net-works (SDN) is a challenging problem. SDN introduces new threat vectors in addition to those inherited from legacy networks. Thus, it becomes an attractive target for attackers. SDN separates the control and data planes, and migrates the control...
- Autores:
-
Alvarez Arguello, Alejandro
- Tipo de recurso:
- Fecha de publicación:
- 2017
- Institución:
- Universidad Nacional de Colombia
- Repositorio:
- Universidad Nacional de Colombia
- Idioma:
- spa
- OAI Identifier:
- oai:repositorio.unal.edu.co:unal/61039
- Acceso en línea:
- https://repositorio.unal.edu.co/handle/unal/61039
http://bdigital.unal.edu.co/59847/
- Palabra clave:
- 03 Obras enciclopédicas generales / Encyclopedias and books of facts
SDN
OpenFlow
DDoS
SPRT
Control plane
- Rights
- openAccess
- License
- Atribución-NoComercial 4.0 Internacional
| id |
UNACIONAL2_d1959f7b11e337c914b373787513197d |
|---|---|
| oai_identifier_str |
oai:repositorio.unal.edu.co:unal/61039 |
| network_acronym_str |
UNACIONAL2 |
| network_name_str |
Universidad Nacional de Colombia |
| repository_id_str |
|
| dc.title.spa.fl_str_mv |
An approach for detection of DDoS attacks against the control plane of software defined networks |
| title |
An approach for detection of DDoS attacks against the control plane of software defined networks |
| spellingShingle |
An approach for detection of DDoS attacks against the control plane of software defined networks 03 Obras enciclopédicas generales / Encyclopedias and books of facts SDN OpenFlow DDoS SPRT Control plane |
| title_short |
An approach for detection of DDoS attacks against the control plane of software defined networks |
| title_full |
An approach for detection of DDoS attacks against the control plane of software defined networks |
| title_fullStr |
An approach for detection of DDoS attacks against the control plane of software defined networks |
| title_full_unstemmed |
An approach for detection of DDoS attacks against the control plane of software defined networks |
| title_sort |
An approach for detection of DDoS attacks against the control plane of software defined networks |
| dc.creator.fl_str_mv |
Alvarez Arguello, Alejandro |
| dc.contributor.advisor.spa.fl_str_mv |
Gutierrez Betancur, Sergio Armando (Thesis advisor) |
| dc.contributor.author.spa.fl_str_mv |
Alvarez Arguello, Alejandro |
| dc.contributor.spa.fl_str_mv |
Branch Bedoya, John Willian |
| dc.subject.ddc.spa.fl_str_mv |
03 Obras enciclopédicas generales / Encyclopedias and books of facts |
| topic |
03 Obras enciclopédicas generales / Encyclopedias and books of facts SDN OpenFlow DDoS SPRT Control plane |
| dc.subject.proposal.spa.fl_str_mv |
SDN OpenFlow DDoS SPRT Control plane |
| description |
Security of the infrastructure of Software De ned Net-works (SDN) is a challenging problem. SDN introduces new threat vectors in addition to those inherited from legacy networks. Thus, it becomes an attractive target for attackers. SDN separates the control and data planes, and migrates the control functions to a logically centralized entity called controller which might be an attractive target for Denial-of-Service (DoS) and Distributed Denial-of-Service (DDoS) attacks. These attacks can be executed easily using open access tools and without requiring specialized or high performance hardware. According to the literature, the protection of the SDN infrastructure, specially against this kind of threats has not been widely addressed. Thus, we propose an algorithm to detect DDoS attacks against SDN control plane. Our algorithm considers both the OpenFlow trafc towards the control plane and speci c interfaces of OpenFlow switches (local perspective detection) or the whole agreggated OpenFlow trac on the control channel (global perspective detection). In our evaluation, we achieved a 99.94% of accuracy in detecting attacks with a 0.04% of false positives and 0.07% of false negatives. |
| publishDate |
2017 |
| dc.date.issued.spa.fl_str_mv |
2017-10-18 |
| dc.date.accessioned.spa.fl_str_mv |
2019-07-02T19:45:53Z |
| dc.date.available.spa.fl_str_mv |
2019-07-02T19:45:53Z |
| dc.type.spa.fl_str_mv |
Trabajo de grado - Maestría |
| dc.type.driver.spa.fl_str_mv |
info:eu-repo/semantics/masterThesis |
| dc.type.version.spa.fl_str_mv |
info:eu-repo/semantics/acceptedVersion |
| dc.type.content.spa.fl_str_mv |
Text |
| dc.type.redcol.spa.fl_str_mv |
http://purl.org/redcol/resource_type/TM |
| status_str |
acceptedVersion |
| dc.identifier.uri.none.fl_str_mv |
https://repositorio.unal.edu.co/handle/unal/61039 |
| dc.identifier.eprints.spa.fl_str_mv |
http://bdigital.unal.edu.co/59847/ |
| url |
https://repositorio.unal.edu.co/handle/unal/61039 http://bdigital.unal.edu.co/59847/ |
| dc.language.iso.spa.fl_str_mv |
spa |
| language |
spa |
| dc.relation.ispartof.spa.fl_str_mv |
Universidad Nacional de Colombia Sede Medellín Facultad de Minas Escuela de Sistemas Ingeniería de Sistemas e Informática Ingeniería de Sistemas e Informática |
| dc.relation.references.spa.fl_str_mv |
Alvarez Arguello, Alejandro (2017) An approach for detection of DDoS attacks against the control plane of software defined networks. Maestría thesis, Universidad Nacional de Colombia – Sede Medellín. |
| dc.rights.spa.fl_str_mv |
Derechos reservados - Universidad Nacional de Colombia |
| dc.rights.coar.fl_str_mv |
http://purl.org/coar/access_right/c_abf2 |
| dc.rights.license.spa.fl_str_mv |
Atribución-NoComercial 4.0 Internacional |
| dc.rights.uri.spa.fl_str_mv |
http://creativecommons.org/licenses/by-nc/4.0/ |
| dc.rights.accessrights.spa.fl_str_mv |
info:eu-repo/semantics/openAccess |
| rights_invalid_str_mv |
Atribución-NoComercial 4.0 Internacional Derechos reservados - Universidad Nacional de Colombia http://creativecommons.org/licenses/by-nc/4.0/ http://purl.org/coar/access_right/c_abf2 |
| eu_rights_str_mv |
openAccess |
| dc.format.mimetype.spa.fl_str_mv |
application/pdf |
| institution |
Universidad Nacional de Colombia |
| bitstream.url.fl_str_mv |
https://repositorio.unal.edu.co/bitstream/unal/61039/1/1040740558.2017.pdf https://repositorio.unal.edu.co/bitstream/unal/61039/2/1040740558.2017.pdf.jpg |
| bitstream.checksum.fl_str_mv |
af22e30e76f59749acfa2161b3629b0f 28db413420a25a6ef6ddda41640f2a44 |
| bitstream.checksumAlgorithm.fl_str_mv |
MD5 MD5 |
| repository.name.fl_str_mv |
Repositorio Institucional Universidad Nacional de Colombia |
| repository.mail.fl_str_mv |
repositorio_nal@unal.edu.co |
| _version_ |
1814090146588393472 |
| spelling |
Atribución-NoComercial 4.0 InternacionalDerechos reservados - Universidad Nacional de Colombiahttp://creativecommons.org/licenses/by-nc/4.0/info:eu-repo/semantics/openAccesshttp://purl.org/coar/access_right/c_abf2Branch Bedoya, John WillianGutierrez Betancur, Sergio Armando (Thesis advisor)80aaf650-1762-4dd8-a445-0b29b838fe13-1Alvarez Arguello, Alejandroc48ae8be-7671-4483-acb5-12a784e67cb73002019-07-02T19:45:53Z2019-07-02T19:45:53Z2017-10-18https://repositorio.unal.edu.co/handle/unal/61039http://bdigital.unal.edu.co/59847/Security of the infrastructure of Software De ned Net-works (SDN) is a challenging problem. SDN introduces new threat vectors in addition to those inherited from legacy networks. Thus, it becomes an attractive target for attackers. SDN separates the control and data planes, and migrates the control functions to a logically centralized entity called controller which might be an attractive target for Denial-of-Service (DoS) and Distributed Denial-of-Service (DDoS) attacks. These attacks can be executed easily using open access tools and without requiring specialized or high performance hardware. According to the literature, the protection of the SDN infrastructure, specially against this kind of threats has not been widely addressed. Thus, we propose an algorithm to detect DDoS attacks against SDN control plane. Our algorithm considers both the OpenFlow trafc towards the control plane and speci c interfaces of OpenFlow switches (local perspective detection) or the whole agreggated OpenFlow trac on the control channel (global perspective detection). In our evaluation, we achieved a 99.94% of accuracy in detecting attacks with a 0.04% of false positives and 0.07% of false negatives.Resumen: La seguridad de la infraestructura de las Redes Definidas por Software (SDN por sus siglas en inglés) es un problema difícil. SDN introduce nuevos vectores de amenaza adicionales a aquellos heredados de las redes tradicionales. SDN se convierte entonces en un objetivo atractivo para los atacantes. SDN separa el plano de control y el plano de datos, y de manera que las funciones de control se migran a una entidad centralizada desde el punto de vista lógico, llamada controlador el cual puede ser un objetivo atractivo para ataques de Denegación de Servicios (DoS) y de Denegación on de Servicio Distribuidos (DDoS). Estos ataques pueden ser ejecutados fácilmente usando herramientas de acceso libre y sin requerir hardware especializado o de alto rendimiento. Según la literatura, la protección de la infraestructura SDN, especialmente contra este tipo de amenazas no ha sido abordada ampliamente. Proponemos un algoritmo para detectar ataques DDoS contra el plano de control SDN. Nuestro algoritmo considera el tráfico que pasa entre el plano de control y las interfaces específicas de los suiches OpenFlow (perspectiva local de detección) y todo el tráfico OpenFlow agregado en el canal de control (perspectiva global de detección). En nuestra evaluación, logramos un 99.94% de precisión en la detección de los ataques con un 0.04% de falsos positivos (eventos que no corresponden a ataques) y un 0.07% de falsos negativos (eventos de ataques que fueron ignorados).Maestríaapplication/pdfspaUniversidad Nacional de Colombia Sede Medellín Facultad de Minas Escuela de Sistemas Ingeniería de Sistemas e InformáticaIngeniería de Sistemas e InformáticaAlvarez Arguello, Alejandro (2017) An approach for detection of DDoS attacks against the control plane of software defined networks. Maestría thesis, Universidad Nacional de Colombia – Sede Medellín.03 Obras enciclopédicas generales / Encyclopedias and books of factsSDNOpenFlowDDoSSPRTControl planeAn approach for detection of DDoS attacks against the control plane of software defined networksTrabajo de grado - Maestríainfo:eu-repo/semantics/masterThesisinfo:eu-repo/semantics/acceptedVersionTexthttp://purl.org/redcol/resource_type/TMORIGINAL1040740558.2017.pdfTesis de Maestría en Ingeniería - Ingeniería de Sistemasapplication/pdf1244745https://repositorio.unal.edu.co/bitstream/unal/61039/1/1040740558.2017.pdfaf22e30e76f59749acfa2161b3629b0fMD51THUMBNAIL1040740558.2017.pdf.jpg1040740558.2017.pdf.jpgGenerated Thumbnailimage/jpeg4837https://repositorio.unal.edu.co/bitstream/unal/61039/2/1040740558.2017.pdf.jpg28db413420a25a6ef6ddda41640f2a44MD52unal/61039oai:repositorio.unal.edu.co:unal/610392023-10-17 10:17:10.91Repositorio Institucional Universidad Nacional de Colombiarepositorio_nal@unal.edu.co |