Abstract
Moving Target Defense (MTD) is an emerging proactive Cyber Security approach. MTD constantly changes the attack surface for making cyber-attacks difficult for the invaders. Software Defined Networking(SDN) provides dynamic network design capabilities with its centralized control plane. In this paper, SMCDS (SDN based Moving Target Defense for control and data planes Security) has been proposed. The SMCDS framework safeguards against the reconnaissance attacks targeted at both data and control planes. The concept of distributed shadow controllers is introduced for securing the control plane. The MTD effect is created through the use of shadow controllers that respond to the malicious probing traffic in place of the actual controller. The availability of the distributed control plane is enhanced through the used of these shadow controllers as well. The proposed framework adopts the reactive and proactive approaches for securing the servers connected at the data plane. The reactive approach capitalizes the technique of shadow servers for providing defense against reconnaissance attacks. The proactive approach provides security enhancement through the technique of IP and port shuffling. The novelty of SMCDS framework is its capability to provide protection of both data and control planes by exploiting SDN based MTD approach. The SMCDS framework was evaluated in terms of the attacker effort, defender cost. From the results, it can be observed that the proposed framework provides security against reconnaissance attacks at a low computational cost. The prototype of the proposed SMCDS was implemented using Mininet emulator and ONOS controller.
Highlights
Cyber security is of pivotal importance in present connected era
In our previous work [12], we proposed a model for protecting control plane of Software Defined Networking (SDN) using shadow controllers approach against the probing attacks
RECONNAISSANCE DETECTION MODULE (RDM) RDM has two distinct components in order to detect the malicious traffic directed towards controller and data planes
Summary
Cyber security is of pivotal importance in present connected era. Modern Computational technologies like Cloud Computing, 5G (Fifth generation) wireless, Internet of Things (IoT) require special care against cyber-attacks. As per the best of our knowledge, there is no previous work that proposed MTD based solution for protection of both control and data planes of SDN. In our previous work [12], we proposed a model for protecting control plane of SDN using shadow controllers approach against the probing attacks. SDN based MTD targeting the security of data plane was proposed in [11]. A DDoS protection mechanism ArOMA for SDN control plane security for an ISP network was proposed in [22]. The proposed model focused on collaborative effort of service provider and its customers for the protection of DDoS attack against the control plane of SDN. The proposed solution comprises of central SDN application with host based agent
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
