TY - GEN
T1 - Risk and avoidance strategy for blocking mechanism of SDN-based security service
AU - Byun, Minjae
AU - Lee, Yongjun
AU - Choi, Jin Young
N1 - Funding Information:
This research was sponsored by Next-Generation Information Computing Development Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Science and ICT (No. 2017M3C4A7083676).
PY - 2019/4/29
Y1 - 2019/4/29
N2 - Software-Defined Network (SDN) is the dynamic network technology to address the issues of traditional networks. It provides centralized view of the whole network through decoupling the control planes and data planes of a network. Most SDN-based security services globally detect and block a malicious host based on IP address. However, the IP address is not verified during the forwarding process in most cases and SDN-based security service may block a normal host with forged IP address in the whole network, which means false-positive. In this paper, we introduce an attack scenario that uses forged packets to make the security service consider a victim host as an attacker so that block the victim. We also introduce cost-effective risk avoidance strategy.
AB - Software-Defined Network (SDN) is the dynamic network technology to address the issues of traditional networks. It provides centralized view of the whole network through decoupling the control planes and data planes of a network. Most SDN-based security services globally detect and block a malicious host based on IP address. However, the IP address is not verified during the forwarding process in most cases and SDN-based security service may block a normal host with forged IP address in the whole network, which means false-positive. In this paper, we introduce an attack scenario that uses forged packets to make the security service consider a victim host as an attacker so that block the victim. We also introduce cost-effective risk avoidance strategy.
KW - IP forging
KW - SDN attack
KW - SDN-based Security Services
KW - blocking mechanism
KW - risk analysis
UR - http://www.scopus.com/inward/record.url?scp=85065656882&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85065656882&partnerID=8YFLogxK
U2 - 10.23919/ICACT.2019.8701887
DO - 10.23919/ICACT.2019.8701887
M3 - Conference contribution
AN - SCOPUS:85065656882
T3 - International Conference on Advanced Communication Technology, ICACT
SP - 187
EP - 190
BT - 21st International Conference on Advanced Communication Technology
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 21st International Conference on Advanced Communication Technology, ICACT 2019
Y2 - 17 February 2019 through 20 February 2019
ER -