The (in)security of Topology Discovery in Software Defined Networks

Talal Alharbi; Marius Portmann; Farzaneh Pakzad

Back

Conference proceeding

The (in)security of Topology Discovery in Software Defined Networks

Talal Alharbi, Marius Portmann and Farzaneh Pakzad

The Institute of Electrical and Electronics Engineers, Inc. (IEEE) Conference Proceedings, p.502

01/10/2015

Abstract

Conference Title: 2015 IEEE 40th Conference on Local Computer Networks (LCN 2015) Conference Start Date: 2015, Oct. 26 Conference End Date: 2015, Oct. 29 Conference Location: Clearwater Beach, FL, USA Topology Discovery is an essential service in Software Defined Networks (SDN). Most SDN controllers use a de-facto standard topology discovery mechanism based on Open-Flow to identify active links in the network. This paper discusses the security, or rather lack thereof, of the current SDN topology discovery mechanism, and its vulnerability to link spoofing attacks. The feasibility and impact of the attacks are verified and demonstrated via experiments. The paper presents and evaluates a countermeasure based on HMAC authentication.

Metrics

1 Record Views

Details

Title: The (in)security of Topology Discovery in Software Defined Networks
Creators - without role: Talal Alharbi
Marius Portmann
Farzaneh Pakzad
Publication Details: The Institute of Electrical and Electronics Engineers, Inc. (IEEE) Conference Proceedings, p.502
Publisher: The Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Identifiers: 9933236908331
Academic Unit: University of Jeddah
Language: English
Resource Type: Conference proceeding