Protecting Software-Defined Enterprise Networks from Packet Injection Attacks

被引:1
|
作者
ul Huque, Tanvir [1 ]
den Hartog, Frank [2 ]
机构
[1] Queensland Univ Technol, Sch Comp Sci, Brisbane, Qld, Australia
[2] Univ New South Wales, Sch Engn & Informat Technol, Canberra, ACT, Australia
来源
PROCEEDINGS OF THE IEEE 46TH CONFERENCE ON LOCAL COMPUTER NETWORKS (LCN 2021) | 2021年
关键词
D O I
10.1109/LCN52139.2021.9524961
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Packet injection attacks are a primary threat to software-defined enterprise networks, for which continuous connectivity and real-time network functioning are two essential requirements. They are a form of denial-of-service attacks, and their main effect is network performance degradation up to total breakdown. In this paper, we show how such an attack can effectively be detected and mitigated at the entrance gateway switch of the software-defined enterprise network without sacrificing the basic functionality and performance of the networks control mechanisms. We describe an effective protection of the network's core controller as well as a significant reduction of rule-space overhead compared to a state-of-the-art technique.
引用
收藏
页码:287 / 292
页数:6
相关论文
共 50 条
  • [21] UniROPE: Universal and Robust Packet Trajectory Tracing for Software-Defined Networks
    Gao, Yi
    Jing, Yuan
    Dong, Wei
    [J]. IEEE-ACM TRANSACTIONS ON NETWORKING, 2018, 26 (06) : 2515 - 2527
  • [22] Multicast Routing Tree for Sequenced Packet Transmission in Software-Defined Networks
    Yu, Peng
    Wu, Renke
    Zhou, Haojie
    Yu, Haibo
    Chen, Yuting
    Zhong, Hao
    [J]. 8TH ASIA-PACIFIC SYMPOSIUM ON INTERNETWARE (INTERNETWARE 2016), 2016, : 27 - 35
  • [23] Performance Analysis of Software-Defined Networks to Mitigate Private VLAN Attacks
    Alvarez, David
    Nuno, Pelayo
    Gonzalez, Carlos T.
    Bulnes, Francisco G.
    Granda, Juan C.
    Garcia-Carrillo, Dan
    [J]. SENSORS, 2023, 23 (04)
  • [24] Detection and defense against network isolation attacks in software-defined networks
    Yu, Zhipeng
    Zhu, Hui
    Xiao, Rui
    Song, Chao
    Dong, Jian
    Li, Hui
    [J]. TRANSACTIONS ON EMERGING TELECOMMUNICATIONS TECHNOLOGIES, 2021, 32 (05)
  • [25] Attacking Network Isolation in Software-Defined Networks: New attacks and Countermeasures
    Xiao, Rui
    Zhu, Hui
    Song, Chao
    Liu, Ximeng
    Dong, Jian
    Li, Hui
    [J]. 2018 27TH INTERNATIONAL CONFERENCE ON COMPUTER COMMUNICATION AND NETWORKS (ICCCN), 2018,
  • [26] DoSGuard: Mitigating Denial-of-Service Attacks in Software-Defined Networks
    Li, Jishuai
    Tu, Tengfei
    Li, Yongsheng
    Qin, Sujuan
    Shi, Yijie
    Wen, Qiaoyan
    [J]. SENSORS, 2022, 22 (03)
  • [27] Denial of Service Attacks Detection in Software-Defined Wireless Sensor Networks
    Nunez Segura, Gustavo A.
    Skaperas, Sotiris
    Chorti, Arsenia
    Mamatas, Lefteris
    Margi, Cintia Borges
    [J]. 2020 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS WORKSHOPS (ICC WORKSHOPS), 2020,
  • [28] Preventing Timing Side-Channel Attacks in Software-Defined Networks
    Shoaib, Faizan
    Chow, Yang-Wai
    Vlahu-Gjorgievska, Elena
    [J]. 2021 IEEE ASIA-PACIFIC CONFERENCE ON COMPUTER SCIENCE AND DATA ENGINEERING (CSDE), 2021,
  • [29] Distributed Denial of Service (DDoS) Attacks in Software-defined Networks (SDN)
    Chahal, Jasmeen Kaur
    Kaur, Puninder
    Sharma, Avinash
    [J]. 2021 5TH INTERNATIONAL CONFERENCE ON ELECTRICAL, ELECTRONICS, COMMUNICATION, COMPUTER TECHNOLOGIES AND OPTIMIZATION TECHNIQUES (ICEECCOT), 2021, : 291 - 295
  • [30] Poisoning Network Visibility in Software-Defined Networks: New Attacks and Countermeasures
    Hong, Sungmin
    Xu, Lei
    Wang, Haopei
    Gu, Guofei
    [J]. 22ND ANNUAL NETWORK AND DISTRIBUTED SYSTEM SECURITY SYMPOSIUM (NDSS 2015), 2015,
12345