Open AccessAn Active Defense Solution for ARP Spoofing in OpenFlow Network
Author(s) -
Xia Jing,
Cai Zhiping,
Hu Gang,
Xu Ming
Publication year - 2019
Publication title -
chinese journal of electronics
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.267
H-Index - 25
eISSN - 2075-5597
pISSN - 1022-4653
DOI - 10.1049/cje.2017.12.002
Subject(s) - arp spoofing , openflow , spoofing attack , computer science , computer network , address resolution protocol , software defined networking , computer security , network security , network management , internet protocol , operating system , ip address management , the internet
As an emerging network technology, Software‐defined network (SDN), has been rapidly developing for recent years due to its advantage in network management and updating. There are still a lot of open problems while applying this novel technology in reality, especially for meeting security demands. The Address resolution protocol (ARP) spoofing, a representative network attack in traditional networks is investigated. We implement the ARP spoofing in SDN network firstly and find that the threat of ARP attack still exists and has big impact on the network. We propose a novel mechanism as defense solution for ARP spoofing oriented to OpenFlow platform. Theoretical analyzation is given, and the mechanism is implemented as a module of POX controller. Experiment results and performance evaluations show that our solution can reduce the security threat of ARP spoofing remarkably on OpenFlow platform and related SDN platforms.