Risk and avoidance strategy for blocking mechanism of SDN-based security service

Minjae Byun; Yongjun Lee; Jin Young Choi

doi:10.23919/ICACT.2019.8701887

Risk and avoidance strategy for blocking mechanism of SDN-based security service

Minjae Byun, Yongjun Lee, Jin Young Choi

School of Cybersecurity

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Software-Defined Network (SDN) is the dynamic network technology to address the issues of traditional networks. It provides centralized view of the whole network through decoupling the control planes and data planes of a network. Most SDN-based security services globally detect and block a malicious host based on IP address. However, the IP address is not verified during the forwarding process in most cases and SDN-based security service may block a normal host with forged IP address in the whole network, which means false-positive. In this paper, we introduce an attack scenario that uses forged packets to make the security service consider a victim host as an attacker so that block the victim. We also introduce cost-effective risk avoidance strategy.

Original language	English
Title of host publication	21st International Conference on Advanced Communication Technology
Subtitle of host publication	ICT for 4th Industrial Revolution!, ICACT 2019 - Proceeding
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	187-190
Number of pages	4
ISBN (Electronic)	9791188428021
DOIs	https://doi.org/10.23919/ICACT.2019.8701887
Publication status	Published - 2019 Apr 29
Event	21st International Conference on Advanced Communication Technology, ICACT 2019 - Pyeongchang, Korea, Republic of Duration: 2019 Feb 17 → 2019 Feb 20

Publication series

Name	International Conference on Advanced Communication Technology, ICACT
Volume	2019-February
ISSN (Print)	1738-9445

Conference

Conference	21st International Conference on Advanced Communication Technology, ICACT 2019
Country/Territory	Korea, Republic of
City	Pyeongchang
Period	19/2/17 → 19/2/20

Keywords

IP forging
SDN attack
SDN-based Security Services
blocking mechanism
risk analysis

ASJC Scopus subject areas

Electrical and Electronic Engineering

Access to Document

10.23919/ICACT.2019.8701887

Cite this

Byun, M., Lee, Y., & Choi, J. Y. (2019). Risk and avoidance strategy for blocking mechanism of SDN-based security service. In 21st International Conference on Advanced Communication Technology: ICT for 4th Industrial Revolution!, ICACT 2019 - Proceeding (pp. 187-190). Article 8701887 (International Conference on Advanced Communication Technology, ICACT; Vol. 2019-February). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.23919/ICACT.2019.8701887

Risk and avoidance strategy for blocking mechanism of SDN-based security service. / Byun, Minjae; Lee, Yongjun; Choi, Jin Young.
21st International Conference on Advanced Communication Technology: ICT for 4th Industrial Revolution!, ICACT 2019 - Proceeding. Institute of Electrical and Electronics Engineers Inc., 2019. p. 187-190 8701887 (International Conference on Advanced Communication Technology, ICACT; Vol. 2019-February).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Byun, M, Lee, Y & Choi, JY 2019, Risk and avoidance strategy for blocking mechanism of SDN-based security service. in 21st International Conference on Advanced Communication Technology: ICT for 4th Industrial Revolution!, ICACT 2019 - Proceeding., 8701887, International Conference on Advanced Communication Technology, ICACT, vol. 2019-February, Institute of Electrical and Electronics Engineers Inc., pp. 187-190, 21st International Conference on Advanced Communication Technology, ICACT 2019, Pyeongchang, Korea, Republic of, 19/2/17. https://doi.org/10.23919/ICACT.2019.8701887

Byun M, Lee Y, Choi JY. Risk and avoidance strategy for blocking mechanism of SDN-based security service. In 21st International Conference on Advanced Communication Technology: ICT for 4th Industrial Revolution!, ICACT 2019 - Proceeding. Institute of Electrical and Electronics Engineers Inc. 2019. p. 187-190. 8701887. (International Conference on Advanced Communication Technology, ICACT). doi: 10.23919/ICACT.2019.8701887

Byun, Minjae ; Lee, Yongjun ; Choi, Jin Young. / Risk and avoidance strategy for blocking mechanism of SDN-based security service. 21st International Conference on Advanced Communication Technology: ICT for 4th Industrial Revolution!, ICACT 2019 - Proceeding. Institute of Electrical and Electronics Engineers Inc., 2019. pp. 187-190 (International Conference on Advanced Communication Technology, ICACT).

@inproceedings{ad4a02e192674338a15b2a1b25e02280,

title = "Risk and avoidance strategy for blocking mechanism of SDN-based security service",

abstract = "Software-Defined Network (SDN) is the dynamic network technology to address the issues of traditional networks. It provides centralized view of the whole network through decoupling the control planes and data planes of a network. Most SDN-based security services globally detect and block a malicious host based on IP address. However, the IP address is not verified during the forwarding process in most cases and SDN-based security service may block a normal host with forged IP address in the whole network, which means false-positive. In this paper, we introduce an attack scenario that uses forged packets to make the security service consider a victim host as an attacker so that block the victim. We also introduce cost-effective risk avoidance strategy.",

keywords = "IP forging, SDN attack, SDN-based Security Services, blocking mechanism, risk analysis",

author = "Minjae Byun and Yongjun Lee and Choi, {Jin Young}",

note = "Funding Information: This research was sponsored by Next-Generation Information Computing Development Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Science and ICT (No. 2017M3C4A7083676).; 21st International Conference on Advanced Communication Technology, ICACT 2019 ; Conference date: 17-02-2019 Through 20-02-2019",

year = "2019",

month = apr,

day = "29",

doi = "10.23919/ICACT.2019.8701887",

language = "English",

series = "International Conference on Advanced Communication Technology, ICACT",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "187--190",

booktitle = "21st International Conference on Advanced Communication Technology",

}

TY - GEN

T1 - Risk and avoidance strategy for blocking mechanism of SDN-based security service

AU - Byun, Minjae

AU - Lee, Yongjun

AU - Choi, Jin Young

N1 - Funding Information: This research was sponsored by Next-Generation Information Computing Development Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Science and ICT (No. 2017M3C4A7083676).

PY - 2019/4/29

Y1 - 2019/4/29

N2 - Software-Defined Network (SDN) is the dynamic network technology to address the issues of traditional networks. It provides centralized view of the whole network through decoupling the control planes and data planes of a network. Most SDN-based security services globally detect and block a malicious host based on IP address. However, the IP address is not verified during the forwarding process in most cases and SDN-based security service may block a normal host with forged IP address in the whole network, which means false-positive. In this paper, we introduce an attack scenario that uses forged packets to make the security service consider a victim host as an attacker so that block the victim. We also introduce cost-effective risk avoidance strategy.

AB - Software-Defined Network (SDN) is the dynamic network technology to address the issues of traditional networks. It provides centralized view of the whole network through decoupling the control planes and data planes of a network. Most SDN-based security services globally detect and block a malicious host based on IP address. However, the IP address is not verified during the forwarding process in most cases and SDN-based security service may block a normal host with forged IP address in the whole network, which means false-positive. In this paper, we introduce an attack scenario that uses forged packets to make the security service consider a victim host as an attacker so that block the victim. We also introduce cost-effective risk avoidance strategy.

KW - IP forging

KW - SDN attack

KW - SDN-based Security Services

KW - blocking mechanism

KW - risk analysis

UR - http://www.scopus.com/inward/record.url?scp=85065656882&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85065656882&partnerID=8YFLogxK

U2 - 10.23919/ICACT.2019.8701887

DO - 10.23919/ICACT.2019.8701887

M3 - Conference contribution

AN - SCOPUS:85065656882

T3 - International Conference on Advanced Communication Technology, ICACT

SP - 187

EP - 190

BT - 21st International Conference on Advanced Communication Technology

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 21st International Conference on Advanced Communication Technology, ICACT 2019

Y2 - 17 February 2019 through 20 February 2019

ER -

Risk and avoidance strategy for blocking mechanism of SDN-based security service

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this