Wednesday, March 12, 2025

International Journal of Network Security & Its Applications (IJNSA) - ERA, WJCI Indexed

International Journal of Network Security & Its Applications (IJNSA) - ERA, WJCI Indexed

ISSN: 0974 - 9330 (Online); 0975 - 2307 (Print)

Webpage URL: https://airccse.org/journal/ijnsa.html

The (In)Security of Topology Discovery in Openflow-Based Software Defined Network

Talal Alharbi, Marius Portmann and Farzaneh Pakzad, The University of Queensland, Australia

Abstract

Networking (SDN) is a new paradigm for configuring, controlling and managing computer networks. In SDN's logically centralized approach to network control, a reliable and accurate view of the network topology is absolutely essential. Most SDN controllers use a de-facto standard topology discovery mechanism based on OpenFlow to identify active links in the network. This paper evaluates the security, or rather lack thereof, of the current SDN topology discovery mechanism. We discuss and demonstrate its vulnerability to a simple link spoofing attack, which allows an attacker to poison the topology view of the controller. The feasibility of the attack is verified and demonstrated via experiments, and its impact on higher layer services is evaluated, via the example of shortest path routing. The paper finally discusses countermeasures, and implements and evaluates the most promising one.

Keywords

Software Defined Network, Topology discovery, Security, POX


Original Source URL: https://aircconline.com/ijnsa/V10N3/10318ijnsa01.pdf

Volume URL: https://airccse.org/journal/jnsa18_current.html

at
Labels: , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

International Journal of Network Security & Its Applications (IJNSA) - ERA, WJCI Indexed

#crytography #protocols #datacenter #network #optimization #database #systemsecurity #spam #phishing #email #iot #internetsecurity #intrusio...