Denial-of-Service Attacks in OpenFlow SDN Networks

被引：0

作者：

Kandoi, Rajat ^{[1
]}

Antikainen, Markku ^{[2
]}

机构：

[1] Ericsson, Kyrkslatt, Finland

[2] Aalto Univ, Dept Comp Sci, Espoo, Finland

来源：

PROCEEDINGS OF THE 2015 IFIP/IEEE INTERNATIONAL SYMPOSIUM ON INTEGRATED NETWORK MANAGEMENT (IM) | 2015年

关键词：

DoS; OpenFlow; SDN; security; flow rule; control plane;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Software-Defined Networking (SDN) has recently gained significant momentum. However, before any large scale deployments, it is important to understand security issues arising from this new technology. This paper discusses two types of Denial-of-Service (DoS) attacks specific to OpenFlow SDN networks. We emulate them on Mininet and provide an analysis on the effect of these attacks. We find that the timeout value of a flow rule, and the control plane bandwidth have a significant impact on the switch's capability. If not configured appropriately, they may allow successful DoS attacks. Finally, we highlight possible mitigation strategies to address such attacks.

引用

页码：1322 / 1326

页数：5

共 50 条

[1] FloodShield: Securing the SDN Infrastructure Against Denial-of-Service Attacks
Zhang, Menghao
Bi, Jun
Bai, Jiasong
Li, Guanyu
[J]. 2018 17TH IEEE INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (IEEE TRUSTCOM) / 12TH IEEE INTERNATIONAL CONFERENCE ON BIG DATA SCIENCE AND ENGINEERING (IEEE BIGDATASE), 2018, : 681 - 692
[2] Denial-of-service attacks
Neumann, PG
[J]. COMMUNICATIONS OF THE ACM, 2000, 43 (04) : 136 - 136
[3] Mitigating Denial of Service (DoS) Attacks in OpenFlow Networks
Oktian, Yustus Eko
Lee, SangGon
Lee, HoonJae
[J]. 2014 INTERNATIONAL CONFERENCE ON INFORMATION AND COMMUNICATION TECHNOLOGY CONVERGENCE (ICTC), 2014, : 325 - 330
[4] Analysis of denial-of-service attacks on denial-of-service defensive measures
Wang, BT
Schulzrinne, H
[J]. GLOBECOM'03: IEEE GLOBAL TELECOMMUNICATIONS CONFERENCE, VOLS 1-7, 2003, : 1339 - 1343
[5] Slow denial-of-service attacks on software defined networks
Interdisciplinary Centre for Security, Reliability and Trust , University of Luxembourg, Luxembourg
不详
不详
[J]. Comput. Networks, 2020,
[6] Coordinated Denial-of-Service Attacks in IEEE 802.22 Networks
Tan, Yi
Sengupta, Shamik
Subbalakshmi, K. P.
[J]. 2010 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS, 2010,
[7] Denial-of-service in wireless sencsor networks: Attacks and defenses
Raymond, David R.
Midkiff, Scott F.
[J]. IEEE PERVASIVE COMPUTING, 2008, 7 (01) : 74 - 81
[8] Slow denial-of-service attacks on software defined networks
Pascoal, Tulio A.
Fonseca, Iguatemi E.
Nigam, Vivek
[J]. COMPUTER NETWORKS, 2020, 173
[9] Detection of Denial-of-service Attacks
Anh Quang Tran
[J]. 计算机工程, 2002, (S1) : 86 - 91
[10] Denial-of-Service Attacks to UMTS
Bertino, Elisa
[J]. COMPUTER, 2015, 48 (02) : 6 - 6

← 1 2 3 4 5 →