Software-Defined Network (SDN) is the dynamic network technology to address the issues of traditional networks. It provides centralized view of the whole network through decoupling the control planes and data planes of a network. Most SDN-based security services globally detect and block a malicious host based on IP address. However, the IP address is not verified during the forwarding process in most cases and SDN-based security service may block a normal host with forged IP address in the whole network, which means false-positive. In this paper, we introduce an attack scenario that uses forged packets to make the security service consider a victim host as an attacker so that block the victim. We also introduce cost-effective risk avoidance strategy.
|Title of host publication
|21st International Conference on Advanced Communication Technology
|Subtitle of host publication
|ICT for 4th Industrial Revolution!, ICACT 2019 - Proceeding
|Institute of Electrical and Electronics Engineers Inc.
|Number of pages
|Published - 2019 Apr 29
|21st International Conference on Advanced Communication Technology, ICACT 2019 - Pyeongchang, Korea, Republic of
Duration: 2019 Feb 17 → 2019 Feb 20
|International Conference on Advanced Communication Technology, ICACT
|21st International Conference on Advanced Communication Technology, ICACT 2019
|Korea, Republic of
|19/2/17 → 19/2/20
Bibliographical noteFunding Information:
This research was sponsored by Next-Generation Information Computing Development Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Science and ICT (No. 2017M3C4A7083676).
- IP forging
- SDN attack
- SDN-based Security Services
- blocking mechanism
- risk analysis
ASJC Scopus subject areas
- Electrical and Electronic Engineering