Texas A&M International University
Among the leading reference implementations of the Software Defined Networking (SDN) paradigm is the OpenFlow framework, which decouples the control plane into a centralized application. In this paper, the authors consider two aspects of OpenFlow that pose security challenges, and they propose two solutions that could address these concerns. The first challenge is the inherent communication bottleneck that arises between the data plane and the control plane, which an adversary could exploit by mounting a control plane saturation attack that disrupts network operations. Indeed, even well-mined adversarial models, such as scanning or Denial-of-Service (DoS) activity, can produce more potent impacts on OpenFlow networks than traditional networks.