Mitigating Flow Table Overloading Attack with Controller-based Flow Filtering Strategy in SDN
作者: Phan The Duy , Le Duy An , Van-Hau Pham
关键词:
摘要: Controller is a key component in the three layers of Software - Defined Networking (SDN), which to process huge number flow requests from network devices. As result, it puts rule into table switch according every incoming packet. However, capacity limited and can be target malicious attacks by taking advantage installing rules controller. Specifically, pushed controller occupy available space for new benign traffic due controlling directing packets SDN relied on installation. These tables full massive entries populated controller, leading out flows. This paper gives method mitigate overloading attack after DDoS notification. It help data plane more secured improving availability with strategy real-time packet monitoring management
acm.org 
sci-hub.st 参考文章(6)
Junho Park, Minho Park, Sungrae Cho, Nhu-Ngoc Dao, A feasible method to combat against DDoS attack in SDN network international conference on information networking. pp. 309- 311 ,(2015) , 10.1109/ICOIN.2015.7057902
Sandra Scott-Hayward, Sriram Natarajan, Sakir Sezer, A Survey of Security in Software Defined Networks IEEE Communications Surveys and Tutorials. ,vol. 18, pp. 623- 654 ,(2016) , 10.1109/COMST.2015.2453114
Ying Qian, Wanqing You, Kai Qian, OpenFlow flow table overflow attacks and countermeasures european conference on networks and communications. pp. 205- 209 ,(2016) , 10.1109/EUCNC.2016.7561033
Neelam Dayal, Prasenjit Maity, Shashank Srivastava, Rahamatullah Khondoker, Research Trends in Security and DDoS in SDN Security and Communication Networks. ,vol. 9, pp. 6386- 6411 ,(2016) , 10.1002/SEC.1759
Raphael Durner, Claas Lorenz, Michael Wiedemann, Wolfgang Kellerer, Detecting and mitigating denial of service attacks against the data plane in software defined networks ieee conference on network softwarization. pp. 1- 6 ,(2017) , 10.1109/NETSOFT.2017.8004229
Menghao Zhang, Jun Bi, Jiasong Bai, Zhao Dong, Yongbin Li, Zhaogeng Li, FTGuard: A Priority-Aware Strategy Against the Flow Table Overflow Attack in SDN acm special interest group on data communication. pp. 141- 143 ,(2017) , 10.1145/3123878.3132015