Research Development of Abnormal Traffic Detection in Software Defined Networking

被引：0

作者：

Xu Y.-H. ^{[1
,2
]}

Sun Z.-X. ^{[1
,2
]}

机构：

[1] Technology Research and Development Center of Postal Industry of State Post Bureau, Technology of Internet of Things, Nanjing University of Posts and Telecommunications, Nanjing

[2] Key Laboratory of Broadband Wireless Communication and Sensor Network Technology, Ministry of Education, Nanjing University of Posts and Telecommunications, Nanjing

来源：

Ruan Jian Xue Bao/Journal of Software | 2020年 / 31卷 / 01期

基金：

中国国家自然科学基金;

关键词：

Abnormal traffic detection; Abnormal traffic mitigation; Abnormal traffic traceback; Network security threats; Software defined networking;

D O I：

10.13328/j.cnki.jos.005879

中图分类号：

学科分类号：

摘要：

Software defined networking (SDN) is new network architecture. SDN separates control layer from data layer and opens network interfaces to realize centralized network control and improve the scalability and the programmability of the network. But SDN is also facing a lot of network security threats. Abnormal traffic detection technologies can protect the network against malicious traffic attacks. This paper presents a comprehensive survey on the abnormal traffic detection of SDN. The possible network attacks on data plane and control plane are overviewed. Abnormal traffic detection frameworks on application plane, control plane, and intermediate platform are introduced and analyzed. The mechanisms of abnormal traffic identification, load balancing, abnormal traffic traceback, and abnormal traffic mitigation are discussed. The future work direction of SDN abnormal traffic detection is pointed out at the end. © Copyright 2020, Institute of Software, the Chinese Academy of Sciences. All rights reserved.

引用

页码：183 / 207

页数：24

共 88 条

[21] Zhang K., Qiu X., CMD: A convincing mechanism for MITM detection in SDN, Proc. of the 2018 IEEE Int'l Conf. on Consumer Electronics (ICCE), pp. 1-6, (2018)
[22] Wang M.M., Liu J.W., Chen J., Mao J., Mao K.F., Software defined networking: Security model, threats and mechanism, Ruan Jian Xue Bao/Journal of Software, 27, 4, pp. 969-992, (2016)
[23] Khairi M.H.H., Ariffin S.H.S., Latiff N.M.A., Abdullah A.S., Hassan M.K., A review of anomaly detection techniques and distributed denial of service (DDoS) on software defined network (SDN), Engineering, Technology & Applied Science Research, 8, 2, pp. 2724-2730, (2018)
[24] Ahmad I., Namal S., Ylianttila M., Gurtov A., Security in software defined networks: A survey, IEEE Communications Surveys & Tutorials, 17, 4, pp. 2317-2346, (2015)
[25] Kloti R., Kotronis V., Smith P., OpenFlow: A security analysis, Proc. of the 21st IEEE Int'l Conf. on Network Protocols (ICNP), 13, pp. 1-6, (2013)
[26] Feghali A., Kilany R., Chamoun M., SDN security problems and solutions analysis, Proc. of the 2015 Int'l Conf. on Protocol Engineering (ICPE) and Int'l Conf. on New Technologies of Distributed Systems (NTDS), pp. 1-5, (2015)
[27] Prasad A.S., Koll D., Fu X., On the security of software-defined networks, Proc. of the 4th European Workshop on Software Defined Networks, pp. 105-106, (2015)
[28] Scott-Hayward S., Kane C., Sezer S., Operationcheckpoint: SDN application control, Proc. of the 22nd IEEE Int'l Conf. on Network Protocols, pp. 618-623, (2014)
[29] Dhawan M., Poddar R., Mahajan K., Mann V., SPHINX: Detecting security attacks in software-defined networks, Proc. of the 2015 Network and Distributed System Security (NDSS) Symp, pp. 1-15, (2015)
[30] Granby B.R., Askwith B., Marnerides A.K., SDN-PANDA: Software-defined network platform for anomaly detection applications, Proc. of the 23rd IEEE Int'l Conf. on Network Protocols (ICNP), pp. 463-466, (2015)

← 1 2 3 4 5 6 7 8 9 →