On Denial of Service Attacks in Software Defined Networks.
IEEE Network(2016)
摘要
Software defined networking greatly simplifies network management by decoupling control functions from the network data plane. However, such a decoupling also opens SDN to various denial of service attacks: an adversary can easily exhaust network resources by flooding short-lived spoofed flows. Toward this issue, we present a comprehensive study of DoS attacks in SDN, and propose multi-layer fair queueing (MLFQ), a simple but effective DoS mitigation method. MLFQ enforces fair sharing of an SDN controller¿s resources with multiple layers of queues, which can dynamically expand and aggregate according to controller load. Both testbed-based and emulation-based experiments demonstrate the effectiveness of MLFQ in mitigating DoS attacks targeted at SDN controllers.
更多查看译文
关键词
Computer crime,Software defined networking,Denial of service,Ports (Computers),Forensics,Switches,Surveillance
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络