Abstract
Software Defined Networking (SDN) is an emerging network paradigm that provides central control over the network. Although, this simplifies the network management and makes efficient use of network resources, it introduces new threats to network reliability and scalability. In fact, a single centralized controller is a single point of failure. Moreover, a single controller may become a performance bottleneck as processing overhead increases. Distributed SDN controller platforms improve the reliability and scalability to some extent, however they remain vulnerable to Distributed Denial of Service (DDoS) attacks, specifically on control plane. We believe that there is a need for a distributed controller framework that is capable of providing service continuity without performance degradation in case of excessive network traffic or DDoS attacks on controller. In this paper, we aim to address the vulnerabilities of SDN control plane. We propose and implement an efficient and Resilient Controller for Software Defined Network (ReCSDN). This framework is capable of detecting and mitigating DDoS attacks timely and ensures the continuity of services without performance degradation. We created an experimental test bed using Mininet to conduct extensive experiments. We deployed ReCSDN on top of Open Network Operating System (ONOS) cluster to confirm the viability of our approach. The experiment results show that with ReCSDN, control plane is not only able to withstand excessive network load but will also continue to provide services in case of any controller failure.
Highlights
Software Defined Networking (SDN) paradigm has revolutionized the traditional networking by separating the control plane and data plane of the network
As Resilient Controller for Software Defined Network (ReCSDN) is developed to work with distributed controller cluster a key aspect of characterizing the performance of ReCSDN is to analyze and compare performance at various scales
The centralized control is one of the major advantages of SDN, it brings about many critical concerns including a single point of failure in case of attacks
Summary
Software Defined Networking (SDN) paradigm has revolutionized the traditional networking by separating the control plane and data plane of the network. With this separation of the control plane and data plane, control logic is implemented in logically centralized controller and network switches becomes simple forwarding devices [1] This decoupling provides several benefits which includes easier network management, increased visibility into the network, programmability, efficient use of network resources, dynamic updating of network policies [2], [3]. Configuration of complex networks which are dynamic in nature is more difficult, because of lack of automated mechanism for defining centralized policies. This creates scalability and configuration issues which makes traditional networks less innovative [24]. As the size of network increases number of devices increases thereby increasing the administrative overhead
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
