Limitations of openflow topology discovery protocol

OpenFlow Discovery Protocol (OFDP) is the defacto protocol used by OpenFlow controllers to discover the underlying topology. In this paper, we show that OFDP has some serious security, efficiency and functionality limitations that make it non suitable for production deployments. Instead, we briefly introduce sOFTD, a new discovery protocol with a built-in security characteristics and which is more efficient than traditional OFDP.

[1]  Jadwiga Indulska,et al.  Efficient topology discovery in software defined networks , 2014, 2014 8th International Conference on Signal Processing and Communication Systems (ICSPCS).

[2]  Martín Casado,et al.  NOX: towards an operating system for networks , 2008, CCRV.

[3]  Lei Xu,et al.  Poisoning Network Visibility in Software-Defined Networks: New Attacks and Countermeasures , 2015, NDSS.

[4]  Guy Pujolle,et al.  Fingerprinting OpenFlow Controllers: The First Step to Attack an SDN Control Plane , 2016, 2016 IEEE Global Communications Conference (GLOBECOM).

[5]  David Erickson,et al.  The beacon openflow controller , 2013, HotSDN '13.

[6]  Marius Portmann,et al.  The (in)security of Topology Discovery in Software Defined Networks , 2015, 2015 IEEE 40th Conference on Local Computer Networks (LCN).

[7]  Paul Congdon Link Layer Discovery Protocol and MIB , 2002 .