AVANT-GUARD: Scalable and Vigilant Switch Flow Management in Software-Defined Networks

Download Now
Provided by: Texas A&M International University
Topic: Security
Format: PDF
Among the leading reference implementations of the Software Defined Networking (SDN) paradigm is the OpenFlow framework, which decouples the control plane into a centralized application. In this paper, the authors consider two aspects of OpenFlow that pose security challenges, and they propose two solutions that could address these concerns. The first challenge is the inherent communication bottleneck that arises between the data plane and the control plane, which an adversary could exploit by mounting a control plane saturation attack that disrupts network operations. Indeed, even well-mined adversarial models, such as scanning or Denial-of-Service (DoS) activity, can produce more potent impacts on OpenFlow networks than traditional networks.
Download Now

Find By Topic