SDN控制平面安全:攻击和缓解技术

Proceedings of the 4th International Conference on Networking, Information Systems & Security Pub Date : 2021-04-01 DOI:10.1145/3454127.3456612

Kiran Fatima, Kanwal Zahoor, N. Bawany

{"title":"SDN控制平面安全:攻击和缓解技术","authors":"Kiran Fatima, Kanwal Zahoor, N. Bawany","doi":"10.1145/3454127.3456612","DOIUrl":null,"url":null,"abstract":"Traditional networks are complex and hard to manage due to many reasons such as manual configuration requirements of dedicated devices, lack of flexibility and a non-dynamic approach. To overcome these limitations and to meet the challenges of modern networks a new networking paradigm Software Defined Networking (SDN) has been introduced. SDN presents a centralized and completely dynamic environment which provides flexibility and programmability in networks. It enables the network to be controlled centrally and intelligently using multiple software applications. SDN being in its infancy, brings along new challenges. Standardization of various interfaces, scalability, compatibility of contrasting or divergent networks, and vulnerability issues are few of them. This paper discusses various vulnerabilities and possible attacks on every layer of an SDN and focuses on control plane attacks. Further, it presents a comprehensive survey on numerous attacks on the brain of an SDN i.e. the control plane along with existing solutions. The study concludes that despite the challenges that are worth debating, SDN has many characteristics that make it an ideal candidate for future networks.","PeriodicalId":432206,"journal":{"name":"Proceedings of the 4th International Conference on Networking, Information Systems & Security","volume":"7 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-04-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"SDN Control Plane Security: Attacks and Mitigation Techniques\",\"authors\":\"Kiran Fatima, Kanwal Zahoor, N. Bawany\",\"doi\":\"10.1145/3454127.3456612\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Traditional networks are complex and hard to manage due to many reasons such as manual configuration requirements of dedicated devices, lack of flexibility and a non-dynamic approach. To overcome these limitations and to meet the challenges of modern networks a new networking paradigm Software Defined Networking (SDN) has been introduced. SDN presents a centralized and completely dynamic environment which provides flexibility and programmability in networks. It enables the network to be controlled centrally and intelligently using multiple software applications. SDN being in its infancy, brings along new challenges. Standardization of various interfaces, scalability, compatibility of contrasting or divergent networks, and vulnerability issues are few of them. This paper discusses various vulnerabilities and possible attacks on every layer of an SDN and focuses on control plane attacks. Further, it presents a comprehensive survey on numerous attacks on the brain of an SDN i.e. the control plane along with existing solutions. The study concludes that despite the challenges that are worth debating, SDN has many characteristics that make it an ideal candidate for future networks.\",\"PeriodicalId\":432206,\"journal\":{\"name\":\"Proceedings of the 4th International Conference on Networking, Information Systems & Security\",\"volume\":\"7 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-04-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 4th International Conference on Networking, Information Systems & Security\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3454127.3456612\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 4th International Conference on Networking, Information Systems & Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3454127.3456612","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

由于专用设备需要手工配置、缺乏灵活性和非动态方法等原因，传统网络结构复杂，管理难度大。为了克服这些限制并迎接现代网络的挑战，一种新的网络范式软件定义网络(SDN)被引入。SDN提供了一个集中的、完全动态的环境，为网络提供了灵活性和可编程性。它可以使用多个软件应用程序对网络进行集中和智能控制。SDN处于起步阶段，带来了新的挑战。各种接口的标准化、可扩展性、对比或分歧网络的兼容性以及漏洞问题只是其中的一小部分。本文讨论了SDN各层的各种漏洞和可能的攻击，重点讨论了控制平面攻击。此外，它还对SDN大脑(即控制平面)的众多攻击以及现有解决方案进行了全面调查。该研究的结论是，尽管存在值得讨论的挑战，但SDN具有许多特性，使其成为未来网络的理想候选。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

SDN Control Plane Security: Attacks and Mitigation Techniques

Traditional networks are complex and hard to manage due to many reasons such as manual configuration requirements of dedicated devices, lack of flexibility and a non-dynamic approach. To overcome these limitations and to meet the challenges of modern networks a new networking paradigm Software Defined Networking (SDN) has been introduced. SDN presents a centralized and completely dynamic environment which provides flexibility and programmability in networks. It enables the network to be controlled centrally and intelligently using multiple software applications. SDN being in its infancy, brings along new challenges. Standardization of various interfaces, scalability, compatibility of contrasting or divergent networks, and vulnerability issues are few of them. This paper discusses various vulnerabilities and possible attacks on every layer of an SDN and focuses on control plane attacks. Further, it presents a comprehensive survey on numerous attacks on the brain of an SDN i.e. the control plane along with existing solutions. The study concludes that despite the challenges that are worth debating, SDN has many characteristics that make it an ideal candidate for future networks.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 4th International Conference on Networking, Information Systems & Security

自引率

0.00%

发文量