OPENFLOW CONTROLLER-BASED SDN: SECURITY ISSUES AND COUNTERMEASURES

Due to the complexity of managing and monitoring large-scale traditional Networks. Software-Defined network (SDN) is the recent network paradigm that has come up to overcome the drawbacks of the traditional network. SDN decouples network control plane from data plane enabling network centralization control and network programmability. Thus simplifying network scalability. However, the vigor of SDN caused of several security challenges and issues associated with various attacks. The current paper aims at introducing a descriptive review of OpenFlow controller-based SDN and the recent existing countermeasures. Moreover, various methods of protecting the controller from such attacks have been discussed which deemed as the valuable contribution in the research field of SDN security

[1]  Martín Casado,et al.  NOX: towards an operating system for networks , 2008, CCRV.

[2]  Lei Xu,et al.  Poisoning Network Visibility in Software-Defined Networks: New Attacks and Countermeasures , 2015, NDSS.

[3]  Nerea Toledo,et al.  Implementing Layer 2 Network Virtualization Using OpenFlow: Challenges and Solutions , 2012, 2012 European Workshop on Software Defined Networking.

[4]  Nabajyoti Medhi,et al.  FlowTrApp: An SDN based architecture for DDoS attack detection and mitigation in data centers , 2016, 2016 3rd International Conference on Signal Processing and Integrated Networks (SPIN).

[5]  Yanghee Choi,et al.  Implementation of Content-oriented Networking Architecture ( CONA ) : A Focus on DDoS Countermeasure , 2010 .

[6]  Lei Xu,et al.  FloodGuard: A DoS Attack Prevention Extension in Software-Defined Networks , 2015, 2015 45th Annual IEEE/IFIP International Conference on Dependable Systems and Networks.

[7]  Thierry Turletti,et al.  A Survey of Software-Defined Networking: Past, Present, and Future of Programmable Networks , 2014, IEEE Communications Surveys & Tutorials.

[8]  Marco Canini,et al.  A NICE Way to Test OpenFlow Applications , 2012, NSDI.

[9]  Yashar Ganjali,et al.  HyperFlow: A Distributed Control Plane for OpenFlow , 2010, INM/WREN.

[10]  Fernando M. V. Ramos,et al.  Towards secure and dependable software-defined networks , 2013, HotSDN '13.

[11]  Wenjuan Li,et al.  A survey on OpenFlow-based Software Defined Networks: Security challenges and countermeasures , 2016, J. Netw. Comput. Appl..

[12]  Guofei Gu,et al.  Attacking software-defined networks: a first feasibility study , 2013, HotSDN '13.

[13]  Yi Wang,et al.  Towards a secure controller platform for openflow applications , 2013, HotSDN '13.

[14]  Mabry Tyson,et al.  A security enforcement kernel for OpenFlow networks , 2012, HotSDN '12.

[15]  Laura Galluccio,et al.  OPERETTA: An OPEnflow-based REmedy to mitigate TCP SYNFLOOD Attacks against web servers , 2015, Comput. Networks.

[16]  Sakir Sezer,et al.  Queen ' s University Belfast-Research Portal Are We Ready for SDN ? Implementation Challenges for Software-Defined Networks , 2016 .

[17]  Fernando M. V. Ramos,et al.  Software-Defined Networking: A Comprehensive Survey , 2014, Proceedings of the IEEE.