{"title":"Detection and Mitigation of MITM Attack in Software Defined Networks","authors":"Saritakumar N, Anusuya K.V, Balasaraswathi B","doi":"10.4108/eai.7-12-2021.2314735","DOIUrl":null,"url":null,"abstract":". Software Defined Network (SDN) is the networking architecture that segregates the activities of the control plane from the data plane. Man In The Middle (MITM) is a type of digital attack in a network where the attacker utilizes duplicated ARP messages by spoofing the attacker’s MAC address with the authorized user’s IP address. This paper sorts out the ARP spoofing, which is the suite of MITM attacks using IP-MAC address bindings. SDN is emulated using Mininet and the MITM attack over this network is done using arpspoof, which is the segment of the tool named Dsniff. For the evaluation of the proposed algorithm, various network parameters are compared and analyzed in both RYU and POX controllers. As a result, the proposed algorithm mitigates the MITM attack successfully by dropping the attacked packets.","PeriodicalId":20712,"journal":{"name":"Proceedings of the First International Conference on Combinatorial and Optimization, ICCAP 2021, December 7-8 2021, Chennai, India","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2021-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the First International Conference on Combinatorial and Optimization, ICCAP 2021, December 7-8 2021, Chennai, India","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4108/eai.7-12-2021.2314735","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 2
Abstract
. Software Defined Network (SDN) is the networking architecture that segregates the activities of the control plane from the data plane. Man In The Middle (MITM) is a type of digital attack in a network where the attacker utilizes duplicated ARP messages by spoofing the attacker’s MAC address with the authorized user’s IP address. This paper sorts out the ARP spoofing, which is the suite of MITM attacks using IP-MAC address bindings. SDN is emulated using Mininet and the MITM attack over this network is done using arpspoof, which is the segment of the tool named Dsniff. For the evaluation of the proposed algorithm, various network parameters are compared and analyzed in both RYU and POX controllers. As a result, the proposed algorithm mitigates the MITM attack successfully by dropping the attacked packets.
. 软件定义网络(SDN)是一种网络体系结构,它将控制平面的活动与数据平面的活动分离开来。中间人(Man In The Middle, MITM)是网络中的一种数字攻击,攻击者利用重复的ARP消息,用授权用户的IP地址欺骗攻击者的MAC地址。ARP欺骗是一种利用IP-MAC地址绑定的MITM攻击。SDN是用Mininet模拟的,这个网络上的MITM攻击是用arpspoof完成的,它是名为Dsniff的工具的一部分。为了评估所提出的算法,比较和分析了RYU和POX控制器中的各种网络参数。结果表明,该算法通过丢弃被攻击的报文,成功地减轻了MITM攻击。