NFV-GUARD: Mitigating Flow Table-Overflow Attacks in SDN Using NFV

被引：7

作者：

Soylu, Mustafa ^{[1
]}

Guillen, Luis ^{[2
]}

Izumi, Satoru ^{[3
]}

Abe, Toru ^{[1
,4
]}

Suganuma, Takuo ^{[1
,4
]}

机构：

[1] Tohoku Univ, Grad Sch Informat Sci, Sendai, Miyagi, Japan

[2] Tohoku Univ, Res Inst Elect Commun RIEC, Sendai, Miyagi, Japan

[3] Sendai Coll, Natl Inst Technol, Sendai, Miyagi, Japan

[4] Tohoku Univ, Cybersci Ctr, Sendai, Miyagi, Japan

来源：

PROCEEDINGS OF THE 2021 IEEE 7TH INTERNATIONAL CONFERENCE ON NETWORK SOFTWARIZATION (NETSOFT 2021): ACCELERATING NETWORK SOFTWARIZATION IN THE COGNITIVE AGE | 2021年

关键词：

SDN; NFV; Table Overflow;

D O I：

10.1109/NetSoft51509.2021.9492584

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Software Defined Networking (SDN) has recently drawn attention by changing the network control paradigm. SDN devices handle the network traffic based on entries stored in their flow table. However, due to the flow table's limited size, attacks such as DDoS can cause the table to overflow. Some of the current table overflow mitigation methods distribute flow entries to other network devices on the physical infrastructure, which might not be effective in small to medium-sized private networks. Therefore, this research proposes a method to mitigate table overflow attacks on SDN by dynamically filtering attackers using Network Function Virtualization (NFV). Preliminary results show that the proposed approach can effectively mitigate table overflow attacks without relying on network infrastructure.

引用

页码：263 / 267

页数：5

共 50 条

[1] Applying NFV/SDN in Mitigating DDoS Attacks
Zhou, Luying
Guo, Huaqun
TENCON 2017 - 2017 IEEE REGION 10 CONFERENCE, 2017, : 2061 - 2066
[2] Mitigating SDN Flow Table Overflow
Luo, Hanwu
Li, Wenzhen
Qian, Ying
Dou, Liang
2018 IEEE 42ND ANNUAL COMPUTER SOFTWARE AND APPLICATIONS CONFERENCE (COMPSAC), VOL 1, 2018, : 821 - 822
[3] A Method for DDoS Attacks Prevention Using SDN and NFV
Shayegan, Mohammad Javad
Damghanian, Amirreza
IEEE ACCESS, 2024, 12 : 108176 - 108184
[4] Mitigating the Table-Overflow Attack in Software-Defined Networking
Xu, Tong
Gao, Deyun
Dong, Ping
Foh, Chuan Heng
Zhang, Hongke
IEEE TRANSACTIONS ON NETWORK AND SERVICE MANAGEMENT, 2017, 14 (04): : 1086 - 1097
[5] SDN Security: Information Disclosure and Flow Table Overflow Attacks
Patwardhan, Aditya
Jayarama, Deepthi
Limaye, Nitish
Vidhale, Shivaji
Parekh, Zarna
Harfoush, Khaled
2019 IEEE GLOBAL COMMUNICATIONS CONFERENCE (GLOBECOM), 2019,
[6] FTODefender: An efficient flow table overflow attacks defending system in SDN
Tang, Dan
Zheng, Zhiqing
Yin, Chao
Xiong, Bing
Qin, Zheng
Yang, Qiuwei
EXPERT SYSTEMS WITH APPLICATIONS, 2024, 237
[7] ElasticNFV: An Elasticity Manager for NFV using SDN
Heideker, A.
Kamienski, C.
IEEE LATIN AMERICA TRANSACTIONS, 2019, 17 (01) : 167 - 173
[8] Managing NFV using SDN and Control Theory
Akhtar, Nabeel
Matta, Ibrahim
Wang, Yuefeng
NOMS 2016 - 2016 IEEE/IFIP NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM, 2016, : 1113 - 1118
[9] Managing NFV using SDN and Control Theory
Akhtar, Nabeel
Matta, Ibrahim
Wang, Yuefeng
NOMS 2016 - 2016 IEEE/IFIP NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM, 2016, : 1005 - 1006
[10] Cloud-based Deception against Network Reconnaissance Attacks using SDN and NFV
Aydeger, Abdullah
Saputro, Nico
Akkaya, Kemal
PROCEEDINGS OF THE 2020 IEEE 45TH CONFERENCE ON LOCAL COMPUTER NETWORKS (LCN 2020), 2020, : 279 - 285

← 1 2 3 4 5 →