SDN中增强南向基础设施安全技术的实现

2022 13th International Conference on Network of the Future (NoF) Pub Date : 2022-10-05 DOI:10.1109/NoF55974.2022.9942644
U. Tupakula, K. Karmakar, V. Varadharajan, Ben Collins
{"title":"SDN中增强南向基础设施安全技术的实现","authors":"U. Tupakula, K. Karmakar, V. Varadharajan, Ben Collins","doi":"10.1109/NoF55974.2022.9942644","DOIUrl":null,"url":null,"abstract":"In this paper we present techniques for enhancing the security of south bound infrastructure in SDN which includes OpenFlow switches and end hosts. In particular, the proposed security techniques have three main goals: (i) validation and secure configuration of flow rules in the OpenFlow switches by trusted SDN controller in the domain; (ii) securing the flows from the end hosts; and (iii) detecting attacks on the switches by malicious entities in the SDN domain. We have implemented the proposed security techniques as an application for ONOS SDN controller. We have also validated our application by detecting various OpenFlow switch specific attacks such as malicious flow rule insertions and modifications in the switches over a mininet emulated network.","PeriodicalId":223811,"journal":{"name":"2022 13th International Conference on Network of the Future (NoF)","volume":"51 3","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-10-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Implementation of Techniques for Enhancing Security of Southbound Infrastructure in SDN\",\"authors\":\"U. Tupakula, K. Karmakar, V. Varadharajan, Ben Collins\",\"doi\":\"10.1109/NoF55974.2022.9942644\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper we present techniques for enhancing the security of south bound infrastructure in SDN which includes OpenFlow switches and end hosts. In particular, the proposed security techniques have three main goals: (i) validation and secure configuration of flow rules in the OpenFlow switches by trusted SDN controller in the domain; (ii) securing the flows from the end hosts; and (iii) detecting attacks on the switches by malicious entities in the SDN domain. We have implemented the proposed security techniques as an application for ONOS SDN controller. We have also validated our application by detecting various OpenFlow switch specific attacks such as malicious flow rule insertions and modifications in the switches over a mininet emulated network.\",\"PeriodicalId\":223811,\"journal\":{\"name\":\"2022 13th International Conference on Network of the Future (NoF)\",\"volume\":\"51 3\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-10-05\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 13th International Conference on Network of the Future (NoF)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/NoF55974.2022.9942644\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 13th International Conference on Network of the Future (NoF)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/NoF55974.2022.9942644","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0

摘要

在本文中,我们提出了增强SDN南向基础设施安全性的技术,包括OpenFlow交换机和终端主机。特别地,所提出的安全技术有三个主要目标:(i)由域中可信的SDN控制器验证和安全配置OpenFlow交换机中的流规则;(ii)保护来自终端主机的流量;(iii)检测SDN域中恶意实体对交换机的攻击。我们已经将提出的安全技术作为ONOS SDN控制器的应用程序实现。我们还通过检测各种OpenFlow交换机特定的攻击来验证我们的应用程序,例如在迷你模拟网络上的交换机中恶意流规则插入和修改。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
Implementation of Techniques for Enhancing Security of Southbound Infrastructure in SDN
In this paper we present techniques for enhancing the security of south bound infrastructure in SDN which includes OpenFlow switches and end hosts. In particular, the proposed security techniques have three main goals: (i) validation and secure configuration of flow rules in the OpenFlow switches by trusted SDN controller in the domain; (ii) securing the flows from the end hosts; and (iii) detecting attacks on the switches by malicious entities in the SDN domain. We have implemented the proposed security techniques as an application for ONOS SDN controller. We have also validated our application by detecting various OpenFlow switch specific attacks such as malicious flow rule insertions and modifications in the switches over a mininet emulated network.
求助全文
通过发布文献求助,成功后即可免费获取论文全文。 去求助
来源期刊
2022 13th International Conference on Network of the Future (NoF)
2022 13th International Conference on Network of the Future (NoF)
自引率
0.00%
发文量
0
期刊最新文献
Generating Stateful Policies for IoT Device Security with Cross-Device Sensors EHGA: A Genetic Algorithm Based Approach for Scheduling Tasks on Distributed Edge-Cloud Infrastructures Proceedings of the 2022 13th International Conference on the Network of the Future (NoF 2022) A Dynamic Algorithm for Optimization of Network Traffic through Smart Network Switch Data Flow Management A Multi-objective Optimization Approach for SDVN Controllers Placement Problem
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1