Resource management of switches and Controller during saturation time to avoid DDoS in SDN

Autor: Amir Shoeb, T. Chithralekha
Rok vydání: 2016
Předmět:
Zdroj: 2016 IEEE International Conference on Engineering and Technology (ICETECH).
Popis: Software Defined Network abbreviated as SDN is a new paradigm which is transforming the existing network into a real time dynamic and programmable network. The logically centralized nature of SDN supports the emerging network architecture with many features such as centralized control of the network by decoupling the control plane and data plane thus enabling a global view of the network. It provides network programmability regardless of the device infrastructure and simplifies the control, but at the same time it is exposed to many vulnerabilities that does not persist in the proposed architecture. The Control plane bandwidth and the time out value of the flow rule have direct impact on the controller's computational efficiency, thus Controller is exposed to attack. An Attacker can saturate the control plane bandwidth and switch flow table by sending bogus packet request continuously which increases the latency and can lead to distributed denial of service (DDoS). In this paper, we propose a feasible method to control the saturation of path between the control and the data plane which is the key to carry out the network functionalities in an efficient manner by handling the request based on priority and the flow rule is configured in context to the peak time.
Databáze: OpenAIRE
Externí odkaz: