Abstract

<p>While Software-Defined Networks (SDNs) have separated control and data planes and completely decouple the flow control from the data forwarding to enable network flexibility, programmability, and innovation, they also raise serious security concerns in each plane and the interfaces between the two planes. This paper, instead of studying the security issues in the SDN control plane as many literatures have done in current research, focuses on the security issues in the SDN data plane, aiming at the state of the art mechanims to identify, detect, and mitigate them. Specifically, this paper reviews the typical models, detections, and mitigations of SDN flow table overflow attacks. After reviewing the various vulnerabilities in SDNs, this paper categorizes the flow table overflow attacks into saturation, low-rate table exhaustion, and slow saturation attacks, and summarizes the attack models, detections, and mitigations of each category. It reviews the typical attacks that can overflow the flow tables and provides the main challenges and open issues for the future research.</p> <p> </p>

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
DoS attack mitigation using rule based and anomaly based techniques in software defined networking
Prajakta M Ombase ... Nayana P Kulkarni
-
Prajakta M Ombase, et. al.Prajakta M Ombase ... Nayana P Kulkarni
01 Nov 2017
A deep learning technique to detect distributed denial of service attacks in software-defined networks
Waheed G Gadallah ... Nagwa M Omar
Computers & Security | VOL. 137
Waheed G Gadallah, et. al.Waheed G Gadallah ... Nagwa M Omar
10 Nov 2023
A survey of control consistency in Software-Defined Networking
Jinshu Su ... Cong Liu
CCF Transactions on Networking | VOL. 2
Jinshu Su, et. al.Jinshu Su ... Cong Liu
08 Oct 2019
Software-Defined Network (SDN) Data Plane Security: Issues, Solutions, and Future Directions
Arash Shaghaghi ... Mohamed Ali Kaafar
-
Arash Shaghaghi, et. al.Arash Shaghaghi ... Mohamed Ali Kaafar
01 Jan 2020
View more papers

More From: 網際網路技術學刊

Paper Title
Journal
Date
Author
Efficient Predictive Regulation Algorithms for AGV System in Industrial Internet
Chao-Hsien Hsieh Chao-Hsien Hsieh ... Hongmei Wang Ziyi Wang
網際網路技術學刊 | VOL. 25
Chao-Hsien Hsieh Chao-Hsien Hsieh, et. al.Chao-Hsien Hsieh Chao-Hsien Hsieh ... Hongmei Wang Ziyi Wang
01 May 2024
Blockchain-based Pipeline Custody System (BPCS) for Preserving Critical Video Evidence
Yun-Yi Fan Yun-Yi Fan ... Jung-San Lee Ying-Chin Chen
網際網路技術學刊 | VOL. 25
Yun-Yi Fan Yun-Yi Fan, et. al.Yun-Yi Fan Yun-Yi Fan ... Jung-San Lee Ying-Chin Chen
01 May 2024
Establishing a Big Data Driver for Digital Transformation, Supplier Concentration and Total Factor Productivity in Enterprises
Hua Zhang Hua Zhang ... Xinyan Gao Hua Zhang
網際網路技術學刊 | VOL. 25
Hua Zhang Hua Zhang, et. al.Hua Zhang Hua Zhang ... Xinyan Gao Hua Zhang
01 May 2024
Data Hiding Methods Using Voting Strategy and Mapping Table
Hengxiao Chi Hengxiao Chi ... Chin-Chen Chang Hengxiao Chi
網際網路技術學刊 | VOL. 25
Hengxiao Chi Hengxiao Chi, et. al.Hengxiao Chi Hengxiao Chi ... Chin-Chen Chang Hengxiao Chi
01 May 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.