Security Challenges and Analysis for SDN‐Based Networks

Abstract

Software-defined networking (SDN) is a very interesting mechanism that has gained wide popularity over traditional networks. The SDN architecture basically consists of three different layers or planes viz., application layer, control layer, and data layer. SDN provides extra flexibility and openness in the networks that lead to increase the security related threats and issues, such as denial of service (DoS) attacks. There is a trade-off between the security and flexibility introduced through a programmable system. SDN architecture is defined with the help of three layers and two interfaces where each has security issues. The DoS and distributed DoS (DDoS) attacks are possible in the data layer and application layer. The flow-based rules conflict at the application layer leads to another concern of security issues. The control layer has the SDN controller, which is a central hub of the SDN system. The centralized controller communicates with networking devices, such as switches/routers. Different types of threats are categorized for SDN systems, such as threats against controllers, threats against switches, threats between controllers, and switches. In this chapter, we have carried out the security policy discussed in the literature. Further, the vulnerability challenges are discussed for SDN. SDN applications run at the topmost of the SDN controllers that enables the deployment of the new network services conveniently. The major concern of attacks on controllers is observed for SDN. Security-defined networking has been developed to illustrate the architecture of security in the context of SDN.