Mitigating ARP Cache Poisoning Attack in Software-Defined Networking (SDN): A Survey

Shah, Zawar; Cosgrove, Steve

doi:10.3390/electronics8101095

Cited by 15 publications

(16 citation statements)

References 42 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…However, all these solutions did not calculate that delay. In addition, traffic monitoring follows certain flow rules, and it is possible that unwanted traffic can comply with the established rules but carry out malicious behavior [ 119 ]. Moreover, SDN infrastructure is itself vulnerable to many attacks [ 119 ] which are not considered by authors in [ 112 , 113 , 114 , 115 , 116 ].…”

Section: Blockchain Based Solutions To Mitigate Ddos Attacks In Iotmentioning

confidence: 99%

Blockchain Based Solutions to Mitigate Distributed Denial of Service (DDoS) Attacks in the Internet of Things (IoT): A Survey

Shah

Ullah

et al. 2022

Sensors

Self Cite

View full text Add to dashboard Cite

Internet of Things (IoT) devices are widely used in many industries including smart cities, smart agriculture, smart medical, smart logistics, etc. However, Distributed Denial of Service (DDoS) attacks pose a serious threat to the security of IoT. Attackers can easily exploit the vulnerabilities of IoT devices and control them as part of botnets to launch DDoS attacks. This is because IoT devices are resource-constrained with limited memory and computing resources. As an emerging technology, Blockchain has the potential to solve the security issues in IoT. Therefore, it is important to analyse various Blockchain-based solutions to mitigate DDoS attacks in IoT. In this survey, a detailed survey of various Blockchain-based solutions to mitigate DDoS attacks in IoT is carried out. First, we discuss how the IoT networks are vulnerable to DDoS attacks, its impact over IoT networks and associated services, the use of Blockchain as a potential technology to address DDoS attacks, in addition to challenges of Blockchain implementation in IoT. We then discuss various existing Blockchain-based solutions to mitigate the DDoS attacks in the IoT environment. Then, we classify existing Blockchain-based solutions into four categories i.e., Distributed Architecture-based solutions, Access Management-based solutions, Traffic Control-based solutions and the Ethereum Platform-based solutions. All the solutions are critically evaluated in terms of their working principles, the DDoS defense mechanism (i.e., prevention, detection, reaction), strengths and weaknesses. Finally, we discuss future research directions that can be explored to design and develop better Blockchain-based solutions to mitigate DDoS attacks in IoT.

show abstract

Section: Blockchain Based Solutions To Mitigate Ddos Attacks In Iotmentioning

confidence: 99%

Blockchain Based Solutions to Mitigate Distributed Denial of Service (DDoS) Attacks in the Internet of Things (IoT): A Survey

Shah

Ullah

et al. 2022

Sensors

Self Cite

View full text Add to dashboard Cite

show abstract

“…A recent survey by Shah et al [15] found that most proposed solutions to mitigate ARP spoofing in SDN utilise IP-MAC address bindings held by the controller; either by listening to DHCP server data or ARP requests. The researchers state that these may be subject to DHCP spoofing attacks, or the initial ARP packets themselves could be spoofed.…”

Section: Related Workmentioning

confidence: 99%

Implementing an intrusion detection and prevention system using Software-Defined Networking: Defending against ARP spoofing attacks and Blacklisted MAC Addresses

Girdler

2021

Computers & Electrical Engineering

View full text Add to dashboard Cite

“…Security of SDN has attracted much attention from researchers [6,8]. Tayfour and Marsono [9] proposed a collaborative technique to detect and mitigate distributed denial-of-service (DDoS) flooding attacks on softwaredefined network (SDN) across multicontroller domains, using sflow-RT [10] and Snort rules.…”

Section: Related Workmentioning

confidence: 99%

“…The main concern for the network administrator and network programmer is to keep the SDN controllers synchronized and having similar network topology information to make the correct routing decisions. However, multicontroller SDN could be targeted by several attacks [4][5][6], including false data injection, where a compromised controller sends fraudulent flow information to other controllers. This could cause routing malfunctions, routing loops, and incorrect functionality of firewalls.…”

Section: Introductionmentioning

confidence: 99%

BMC-SDN: Blockchain-Based Multicontroller Architecture for Secure Software-Defined Networks

Derhab

Gabsi

Belaoued

et al. 2021

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

Multicontroller software-defined networks have been widely adopted to enable management of large-scale networks. However, they are vulnerable to several attacks including false data injection, which creates topology inconsistency among controllers. To deal with this issue, we propose BMC-SDN, a security architecture that integrates blockchain and multicontroller SDN and divides the network into several domains. Each SDN domain is managed by one master controller that communicates through blockchain with the masters of the other domains. The master controller creates blocks of network flow updates, and its redundant controllers validate the new block based on a proposed reputation mechanism. The reputation mechanism rates the controllers, i.e., block creator and voters, after each voting operation using constant and combined adaptive fading reputation strategies. The evaluation results demonstrate a fast and optimal detection of fraudulent flow rule injection.

show abstract

Mitigating ARP Cache Poisoning Attack in Software-Defined Networking (SDN): A Survey

Cited by 15 publications

References 42 publications

Blockchain Based Solutions to Mitigate Distributed Denial of Service (DDoS) Attacks in the Internet of Things (IoT): A Survey

Blockchain Based Solutions to Mitigate Distributed Denial of Service (DDoS) Attacks in the Internet of Things (IoT): A Survey

Implementing an intrusion detection and prevention system using Software-Defined Networking: Defending against ARP spoofing attacks and Blacklisted MAC Addresses

BMC-SDN: Blockchain-Based Multicontroller Architecture for Secure Software-Defined Networks

Contact Info

Product

Resources

About