A survey: Typical security issues of software-defined networking

Liu, Yifan; Zhao, Bo; Zhao, Pengyuan; Fan, Peiru; Liu, Hui

doi:10.23919/jcc.2019.07.002

Cited by 51 publications

(22 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In software-defined networking, security is a very critical feature [71]. In order to provide usability, integrity, and protection to all elements and info, SDN protection needs to be integrated into the architecture [72].…”

Section: Security Challengesmentioning

confidence: 99%

Comparison of Software Defined Networking with Traditional Networking

Haji

Zeebaree

Saeed

et al. 2021

AJRCoS

View full text Add to dashboard Cite

The Internet has caused the advent of a digital society; wherein almost everything is connected and available from any place. Thus, regardless of their extensive adoption, traditional IP networks are yet complicated and arduous to operate. Therefore, there is difficulty in configuring the network in line with the predefined procedures and responding to the load modifications and faults through network reconfiguring. The current networks are likewise vertically incorporated to make matters far more complicated: the control and data planes are bundled collectively. Software-Defined Networking (SDN) is an emerging concept which aims to change this situation by breaking vertical incorporation, promoting the logical centralization of the network control, separating the network control logic from the basic switches and routers, and enabling the network programming. The segregation of concerns identified between the policies concept of network, their implementation in hardware switching and data forwarding is essential to the flexibility required: SDN makes it less complicated and facilitates to make and introduce new concepts in networking through breaking the issue of the network control into tractable parts, simplifies the network management and facilitate the development of the network. In this paper, the SDN is reviewed; it introduces SDN, explaining its core concepts, how it varies from traditional networking, and its architecture principles. Furthermore, we presented the crucial advantages and challenges of SDN, focusing on scalability, security, flexibility, and performance. Finally, a brief conclusion of SDN is revised.

show abstract

Section: Security Challengesmentioning

confidence: 99%

Comparison of Software Defined Networking with Traditional Networking

Haji

Zeebaree

Saeed

et al. 2021

AJRCoS

View full text Add to dashboard Cite

show abstract

“…As the decision center, the controller has a high probability to become the target of attackers. D. Melkov et al [18] analyzed the advantages and disadvantages of SDN in detail and classify security threats into SDN's unique challenges and the same challenges as classical networks. The security vulnerability of controller is studied and discussed from different angles, because it is the most vulnerable component in SDN architecture.…”

Section: • Lack Of Authentication Mechanism and Application Authoriza...mentioning

confidence: 99%

Detection of DDoS Attacks in Software Defined Networking Using Entropy

et al. 2021

View full text Add to dashboard Cite

Software Defined Networking (SDN) is one of the most commonly used network architectures in recent years. With the substantial increase in the number of Internet users, network security threats appear more frequently, which brings more concerns to SDN. Distributed denial of Service (DDoS) attacks are one of the most dangerous and frequent attacks in software defined networks. The traditional attack detection method using entropy has some defects such as slow attack detection and poor detection effect. In order to solve this problem, this paper proposed a method of fusion entropy, which detects attacks by measuring the randomness of network events. This method has the advantages of fast attack detection speed and obvious decrease in entropy value. The complementarity of information entropy and log energy entropy is effectively utilized. The experimental results show that the entropy value of the attack scenarios 91.25% lower than normal scenarios, which has greater advantages and significance compared with other attack detection methods.

show abstract

“…Despite there are a lot of literatures researching the security problems occurred in IIoT toward many aspects such as threats detection and mitigation, secure policy enforcement, and secure routing, 12‐34 these researches are far from enough to guarantee the access control, authentication and data integrity, especially under such centralized and virtualized IIoT environment, because the controller is like a third‐party trust center where all the authentication and authorization behaviors are fulfilled. Once some “trusted” devices or entities defraud the control access, they can proceed malicious activities (eg, tampering) and remove their tracks subsequently.…”

Section: Introductionmentioning

confidence: 99%

A security‐driven network architecture for routing in industrial Internet of Things

Cao

Wang

Huang

et al. 2021

Trans Emerging Tel Tech

View full text Add to dashboard Cite

Industrial Internet of Things (IIoT), as the integration of industrial network and IoT, has attracted a lot of attention from both academia and industry. However, with such integration deepens, many issues suffered by the industrial networks are exposed and magnified. The secure routing is a key focus, since the industrial environment is extremely vulnerable and many potential threats (eg, distributed denial of service and selfish attacks) are introduced due to the connection to the Internet. In order to prevent the threats from the Internet and embrace the benefits of IIoT, a security‐driven network framework for routing is particularly designed. Specifically, we first leverage the technologies of software‐defined networking (SDN), network function virtualization (NFV), and blockchain to create the overall framework which is flexible, programmable, and secure. On one hand, the three‐level structure of SDN/NFV is applied to each domain, based on which we can flexibly control and program the underlying forwarding devices in this domain for the purpose of calculating the optimal routing policies. On the other hand, the blockchain is applied among different SDN controllers to create a trust and untamperable environment. Then, under this framework, a secure routing mechanism is proposed as well to prevent the attacks on the basis of node identity authentication and node behavior authentication. The simulation experiments are carried out on the OMNet++ platform and the experimental results indicate that the proposed mechanism outperforms the other state‐of‐the‐art methods in terms of scalability and robustness especially when encountering malicious attacks.

show abstract

A survey: Typical security issues of software-defined networking

Cited by 51 publications

References 0 publications

Comparison of Software Defined Networking with Traditional Networking

Comparison of Software Defined Networking with Traditional Networking

Detection of DDoS Attacks in Software Defined Networking Using Entropy

A security‐driven network architecture for routing in industrial Internet of Things

Contact Info

Product

Resources

About