Protecting Software-Defined Enterprise Networks from Packet Injection Attacks

被引:1
|
作者
ul Huque, Tanvir [1 ]
den Hartog, Frank [2 ]
机构
[1] Queensland Univ Technol, Sch Comp Sci, Brisbane, Qld, Australia
[2] Univ New South Wales, Sch Engn & Informat Technol, Canberra, ACT, Australia
来源
PROCEEDINGS OF THE IEEE 46TH CONFERENCE ON LOCAL COMPUTER NETWORKS (LCN 2021) | 2021年
关键词
D O I
10.1109/LCN52139.2021.9524961
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Packet injection attacks are a primary threat to software-defined enterprise networks, for which continuous connectivity and real-time network functioning are two essential requirements. They are a form of denial-of-service attacks, and their main effect is network performance degradation up to total breakdown. In this paper, we show how such an attack can effectively be detected and mitigated at the entrance gateway switch of the software-defined enterprise network without sacrificing the basic functionality and performance of the networks control mechanisms. We describe an effective protection of the network's core controller as well as a significant reduction of rule-space overhead compared to a state-of-the-art technique.
引用
收藏
页码:287 / 292
页数:6
相关论文
共 50 条
  • [41] Poster: Protecting Control Planes in In-Band Software-Defined Wireless Networks
    An, Namwon
    Lim, Hyuk
    [J]. MOBICOM'19: PROCEEDINGS OF THE 25TH ANNUAL INTERNATIONAL CONFERENCE ON MOBILE COMPUTING AND NETWORKING, 2019,
  • [42] An efficient packet parser architecture for software-defined 5G networks
    Yazdinejad, Abbas
    Dehghantanha, Ali
    Karimipour, Hadis
    Srivastava, Gautam
    Parizi, Reza M.
    [J]. PHYSICAL COMMUNICATION, 2022, 53
  • [43] A Prioritized Queueing Model of OpenFlow Packet Forwarding in Software-Defined Core Networks
    Xiong B.
    Zuo M.-K.
    Li W.
    Wang J.
    [J]. Tien Tzu Hsueh Pao/Acta Electronica Sinica, 2019, 47 (10): : 2040 - 2049
  • [44] Experimental demonstration of software-defined optical network for heterogeneous packet and optical networks
    Yu Zhou
    Shan Yin
    Bingli Guo
    Haibin Huang
    Wenzhe Li
    Min Zhang
    Shanguo Huang
    [J]. Photonic Network Communications, 2016, 32 : 329 - 335
  • [45] Experimental demonstration of software-defined optical network for heterogeneous packet and optical networks
    Zhou, Yu
    Yin, Shan
    Guo, Bingli
    Huang, Haibin
    Li, Wenzhe
    Zhang, Min
    Huang, Shanguo
    [J]. PHOTONIC NETWORK COMMUNICATIONS, 2016, 32 (02) : 329 - 335
  • [46] Causal Analysis for Software-Defined Networking Attacks
    Ujcich, Benjamin E.
    Jero, Samuel
    Skowyra, Richard
    Bates, Adam
    Sanders, William H.
    Okhravi, Hamed
    [J]. PROCEEDINGS OF THE 30TH USENIX SECURITY SYMPOSIUM, 2021, : 3183 - 3200
  • [47] Future Scenarios for Software-Defined Metro and Access Networks and Software-Defined Photonics
    Muciaccia, Tommaso
    Passaro, Vittorio M. N.
    [J]. PHOTONICS, 2017, 4 (01)
  • [48] Distributed Security Network Functions against Botnet Attacks in Software-defined Networks
    Park, Younghee
    Kengalahalli, Nikhil Vijayakumar
    Chang, Sang-Yoon
    [J]. 2018 IEEE CONFERENCE ON NETWORK FUNCTION VIRTUALIZATION AND SOFTWARE DEFINED NETWORKS (NFV-SDN), 2018,
  • [49] A Cost-Effective MTD Approach for DDoS Attacks in Software-Defined Networks
    Javadpour, Amir
    Ja'fari, Forough
    Taleb, Tarik
    Shojafar, Mohammad
    [J]. 2022 IEEE GLOBAL COMMUNICATIONS CONFERENCE (GLOBECOM 2022), 2022, : 4173 - 4178
  • [50] Adaptive Bubble Burst (ABB): Mitigating DDoS Attacks in Software-Defined Networks
    Sattar, Danish
    Matrawy, Ashraf
    Adeojo, Olufemi
    [J]. 2016 17TH INTERNATIONAL TELECOMMUNICATIONS NETWORK STRATEGY AND PLANNING SYMPOSIUM (NETWORKS), 2016, : 50 - 55
12345