A Secured OpenFlow-Based Software Defined Networking Using Dynamic Bayesian Network

289

Views

0

Downloads

Sophakan, Natnaree and Sathitwiriyawong, Chanboon (2019) A Secured OpenFlow-Based Software Defined Networking Using Dynamic Bayesian Network In: 2019 19th International Conference on Control, Automation and Systems (ICCAS), 2019-10-15, Jeju, Korea (South).

Abstract

OpenFlow has been the main standard protocol of software defined networking (SDN) since the launch of this new networking paradigm. It is a programmable network protocol that controls traffic flows among switches and routers regardless of their platforms. Its security relies on the optional implementation of Transport Layer Security (TLS) which has been proven vulnerable. The aim of this research was to develop a secured OpenFlow, so-called Secured-OF. A stateful firewall was used to store state information for further analysis. Dynamic Bayesian Network (DBN) was used to learn denial-of-service attack and distributed denial-of-service attack. It analyzes packet states to determine the nature of an attack and adds that piece of information to the flow table entry. The proposed Secured-OF model in Ryu controller was evaluated with several performance metrics. The analytical evaluation of the proposed Secured-OF scheme was performed on an emulated network. The results showed that the proposed Secured-OF scheme offers a high attack detection accuracy at 99.5%. In conclusion, it was able to improve the security of the OpenFlow controller dramatically with trivial performance degradation compared to an SDN with no security implementation.

Item Type:

Conference or Workshop Item (Paper)

Identification Number (DOI):

Deposited by:

ระบบ อัตโนมัติ

Date Deposited:

2021-09-09 23:53:43

Last Modified:

2021-10-03 16:06:31

Impact and Interest:

Statistics