Mitigating ARP Spoofing Attacks in Software-Defined Networks

AbdelSalam, Ahmed M.; El-Sisi, Ashraf B.; K, Vamshi Reddy

doi:10.1109/iccta37466.2015.9513433

Cited by 18 publications

(2 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Another proposed solution is Dynamic ARP Inspection (DAI). DAI works by intercepting all ARP requests and responses, dropping packets with invalid IP-to-MAC address mappings [21][22] [23].…”

Section: E Software Defined Networkingmentioning

confidence: 99%

5G Attacks and Countermeasures

Bjerre

Blomsterberg

Andersen

2022

2022 25th International Symposium on Wireless Personal Multimedia Communications (WPMC)

View full text Add to dashboard Cite

With the arrival of fifth generation of mobile networking technology, 5G, subscribers and IoT devices can look forward to higher data transfer rates, lower latency, better reliability, and increased availability. Deploying new infrastructure in conjunction with the previous generations of networks will expand the attack surface. We explore the architecture of the 5G architecture and give an overview of the types of attack vectors and how to possibly mitigate the attacks. Through our research, we found that vulnerabilities must be addressed at every level within the infrastructure of 5G network. While 5G network has increased in complexity and separated services depend from one another, maintaining and patching a service has been made easier. From security perspective, this study emphasizes how mobile network technologies are receptive to threats and the need for mitigation methods is a high priority. We estimate exploit difficulties and they indicate how to prioritize the work forward on developing mitigation methods.

show abstract

Section: E Software Defined Networkingmentioning

confidence: 99%

5G Attacks and Countermeasures

Bjerre

Blomsterberg

Andersen

2022

2022 25th International Symposium on Wireless Personal Multimedia Communications (WPMC)

View full text Add to dashboard Cite

show abstract

“…Software-defined networking (SDN) is a revolutionary network model that holds immense potential for the future development of networks [1]. Unlike traditional network architectures, SDN introduces a three-layered structure consisting of the application layer, control layer, and infrastructure layer.…”

Section: Introductionmentioning

confidence: 99%

FFTC: A DDoS attack detection and defense mechanism based on flow feature and threshold control in SDN

junhan

2024

Third International Conference on Electronic Information Engineering and Data Processing (EIEDP 2024)

View full text Add to dashboard Cite

Recent advancement in Software Defined Networking (SDN) has provided great opportunities for general architectural design for future networks. Current SDN is appealing for facilely mastering the separation of control plane and data processing to enhance network control and management. However, the susceptibility of existing SDN networks to malicious distributed denial of service (DDoS) attacks poses serious cybersecurity risks, which potentially results in catastrophic consequences. In this paper, we propose a DDoS attack detection and defense mechanism called FFTC based on flow-based feature extraction and dynamic threshold control to automatically identify adversarial attacks and ensure the security of SDN networks. It aims to analyse the flow behaviour, extract available pattern and adjust threshold to realize accurate identification and real-time response to DDoS attacks, and provide corresponding defense strategies. Experimental results demonstrate that the proposed FFTC mechanism can not only maintain the proper precision and reduce the processing time, but also successfully detect various DDoS attacks and restore the corresponding port communication.

show abstract

A comprehensive survey of security threats and their mitigation techniques for next‐generation SDN controllers

Jan

Tan

Usman

et al. 2019

Concurrency and Computation

View full text Add to dashboard Cite

SummarySoftware Defined Network (SDN) and Network Virtualization (NV) are emerged paradigms that simplified the control and management of the next generation networks, most importantly, Internet of Things (IoT), Cloud Computing, and Cyber‐Physical Systems. The Internet of Things (IoT) includes a diverse range of a vast collection of heterogeneous devices that require interoperable communication, scalable platforms, and security provisioning. Security provisioning to an SDN‐based IoT network poses a real security challenge leading to various serious security threats due to the connection of various heterogeneous devices having a wide range of access protocols. Furthermore, the logical centralized controlled intelligence of the SDN architecture represents a plethora of security challenges due to its single point of failure. It may throw the entire network into chaos and thus expose it to various known and unknown security threats and attacks. Security of SDN controlled IoT environment is still in infancy and thus remains the prime research agenda for both the industry and academia. This paper comprehensively reviews the current state‐of‐the‐art security threats, vulnerabilities, and issues at the control plane. Moreover, this paper contributes by presenting a detailed classification of various security attacks on the control layer. A comprehensive state‐of‐the‐art review of the latest mitigation techniques for various security breaches is also presented. Finally, this paper presents future research directions and challenges for further investigation down the line.

show abstract

Mitigating ARP Spoofing Attacks in Software-Defined Networks

Cited by 18 publications

References 9 publications

5G Attacks and Countermeasures

5G Attacks and Countermeasures

FFTC: A DDoS attack detection and defense mechanism based on flow feature and threshold control in SDN

A comprehensive survey of security threats and their mitigation techniques for next‐generation SDN controllers

Contact Info

Product

Resources

About