Effective Topology Tampering Attacks and Defenses in Software-Defined Networks Conference Paper

abstract

• 2018 IEEE. As Software-Defined Networking has gained increasing prominence, new attacks have been demonstrated which can corrupt the SDN controller's view of network topology. These topology poisoning attacks, most notably host-location hijacking and link fabrication attacks, enable adversaries to impersonate end-hosts or inter-switch links in order to monitor, corrupt, or drop network flows. In response, defenses have been developed to detect such attacks and raise an alert. In this paper, we analyze two such defenses, TopoGuard and Sphinx, and present two new attacks, Port Probing and Port Amnesia, that can successfully bypass them. We then develop and present extensions to TopoGuard to make it resilient to such attacks.

name of conference

• 2018 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN)

authors

• Gu, Guofei

published proceedings

• 2018 48TH ANNUAL IEEE/IFIP INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS (DSN)

author list (cited authors)

• Skowyra, R., Xu, L., Gu, G., Dedhia, V., Hobson, T., Okhravi, H., & Landry, J.

citation count

• 35

complete list of authors

• Skowyra, Richard||Xu, Lei||Gu, Guofei||Dedhia, Veer||Hobson, Thomas||Okhravi, Hamed||Landry, James

publication date

• January 2018

publisher

• Institute of Electrical and Electronics Engineers (IEEE)  Publisher

published in

• n1530-0889ISSN  Journal

Digital Object Identifier (DOI)

• 10.1109/DSN.2018.00047

International Standard Book Number (ISBN) 13

• 9781538655955

start page

• 374

end page

• 385