Software-defined network flow table overflow attacks and countermeasures | Zendy

Wanqing You | Zendy; Kai Qian | Zendy; Ying Qian | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

Software-defined network flow table overflow attacks and countermeasures

Author(s) -

Wanqing You,

Kai Qian,

Ying Qian

Publication year - 2016

Publication title -

international journal of soft computing and networking

Language(s) - English

Resource type - Journals

eISSN - 2052-8469

pISSN - 2052-8450

DOI - 10.1504/ijscn.2016.077044

Subject(s) - computer science , table (database) , computer network , software , operating system , computer security , database

Software-defined network (SDN) is proposed as a new concept in computer networks, which separates the control plane from the data plane. And it provides a programmable network architecture that could facilitate rapid network innovation. OpenFlow is a network protocol that standardises the communications between OpenFlow controllers and OpenFlow switches. It is considered as an enabler of SDN. The flow table in OpenFlow switches plays a critical role in OpenFlow-based SDN, which stores the rules populated by the controllers for controlling and directing the packet flows in SDN. Nevertheless, they also become a new target of malicious attacks. This paper analyses the flow table overflow attack, a type of denial of service attacks, and proposes a novel eviction algorithm, dynamic in/out balancing with least frequently used eviction (DIOB/LFU), at service level to defend against the flow table overflow attacks.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research