Software-defined networking security

  • Author(s) / Creator(s)
  • The evolution of communication technologies led to active virtualization of computer network solutions and proliferation of the Software Defined Networks (SDN) as a centralized network infrastructure management tool. The SDN is a relatively new technology and rush to move products to the market in some cases forces companies to overlook security mechanisms. The proposed research provides assessment of the susceptibility of some of the SDN solutions to the DDoS attacks. The attacks on north- and south-bound communications have been carried out using two SDN controllers on a public cloud. Detailed analysis of the attack results indicated that even small-scale DDoS floods can have devastating impacts on the SDN ecosystem if the attacking botnet has access to communication channels that carry out network management traffic. The research makes it is evident that proper isolation is required, and it should not be limited to standard mechanisms as encryption but should assume proper authorization mechanisms to prevent such attacks.

  • Date created
  • Subjects / Keywords
  • Type of Item
    Research Material
  • DOI
  • License
    Attribution-NonCommercial 4.0 International