Information Security in Software-Defined Network

For long, software-defined network (SDN) has been the new trend in the field of networking. Despite being way better than the traditional networking approach, security issues related to SDN are a major concern for technologists all over the globe. It has drawn great attention and is still a highly interesting field of study for network administrators. Among the various means suggested to overcome these security issues, working with securing Border Gateway Protocol (BGP) seems to be a feasible solution to securing SDN. BGP deals with transferring data between two autonomous systems by exchanging routing information between the systems. In this paper, we propose an efficient way to secure data transfer, through BGP, between two autonomous systems in SDN. This is achieved by encrypting data using Advanced Encryption Standard (AES) Encryption Algorithm. In order to prove its feasibility, AES data encryption algorithm is implemented on two hosts in SDN and data transfer is traced on Wireshark. Furthermore, we extend our study to conclude that SDN can be secured by encrypting data over BGP and then transferring it safely to the destination.

[1]  Shailendra Mishra,et al.  Software Defined Networking: Research Issues, Challenges and Opportunities , 2017 .

[2]  LiWenjuan,et al.  A survey on OpenFlow-based Software Defined Networks , 2016 .

[3]  Sakir Sezer,et al.  Sdn Security: A Survey , 2013, 2013 IEEE SDN for Future Networks and Services (SDN4FNS).

[4]  Wenjuan Li,et al.  A survey on OpenFlow-based Software Defined Networks: Security challenges and countermeasures , 2016, J. Netw. Comput. Appl..

[5]  ZhangZonghua,et al.  Enabling security functions with SDN , 2015 .

[6]  Paul Smith,et al.  OpenFlow: A security analysis , 2013, 2013 21st IEEE International Conference on Network Protocols (ICNP).

[7]  Fatima Mohsin,et al.  Security Issues in Software Defined Networking (SDN): Risks, Challenges and Potential Solutions , 2019, International Journal of Advanced Computer Science and Applications.

[8]  Erika Sanchez-Velazquez,et al.  OpenFlow Communications and TLS Security in Software-Defined Networks , 2017, 2017 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData).

[9]  Deepak Singh Rana,et al.  Software Defined Networking (SDN) Challenges, issues and Solution , 2019, International Journal of Computer Sciences and Engineering.

[10]  Ailton Akira Shinoda,et al.  Using Mininet for emulation and prototyping Software-Defined Networks , 2014, 2014 IEEE Colombian Conference on Communications and Computing (COLCOM).

[11]  Nozomu Togawa,et al.  A Scan-Based Attack Based on Discriminators for AES Cryptosystems , 2009, IEICE Trans. Fundam. Electron. Commun. Comput. Sci..

[12]  V. Elamaran,et al.  Exploring DNS, HTTP, and ICMP Response Time Computations on Brain Signal/Image Databases using a Packet Sniffer Tool , 2018, IEEE Access.

[13]  Zonghua Zhang,et al.  Enabling security functions with SDN: A feasibility study , 2015, Comput. Networks.

[14]  Gurpreet Singh,et al.  A Study of Encryption Algorithms (RSA, DES, 3DES and AES) for Information Security , 2013, International Journal of Computer Applications.

[15]  Prerna Mahajan,et al.  A Study of Encryption Algorithms AES, DES and RSA for Security , 2013 .

[16]  Christian Banse,et al.  A Secure Northbound Interface for SDN Applications , 2015, 2015 IEEE Trustcom/BigDataSE/ISPA.

[17]  Krzysztof Cabaj,et al.  SDN Architecture Impact on Network Security , 2014, FedCSIS.

[18]  Olivier Flauzac,et al.  SDN Based Architecture for IoT and Improvement of the Security , 2015, 2015 IEEE 29th International Conference on Advanced Information Networking and Applications Workshops.

[19]  Usha Banerjee,et al.  Evaluation of the Capabilities of WireShark as a tool for Intrusion Detection , 2010 .

[20]  Zhigang Luo,et al.  A comprehensive security architecture for SDN , 2015, 2015 18th International Conference on Intelligence in Next Generation Networks.

[21]  Sakir Sezer,et al.  Queen ' s University Belfast-Research Portal Are We Ready for SDN ? Implementation Challenges for Software-Defined Networks , 2016 .