MHSDN: A Hierarchical Software Defined Network Reliability Framework design
Abstract At present, attacks based on the vulnerability of the controller and flooding attacks still constitute a principal threat for hierarchical Software Defined Network (SDN), such as flow table tampering, malicious Application attacks, Distributed Denial of Service (DDoS) etc., due to the limit...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Wiley
2023-01-01
|
| Series: | IET Information Security |
| Online Access: | https://doi.org/10.1049/ise2.12080 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832547355007647744 |
|---|---|
| author | Zhengbin Zhu Qinrang Liu Dongpei Liu ChenYang Ge Chong Wang |
| author_facet | Zhengbin Zhu Qinrang Liu Dongpei Liu ChenYang Ge Chong Wang |
| author_sort | Zhengbin Zhu |
| collection | DOAJ |
| description | Abstract At present, attacks based on the vulnerability of the controller and flooding attacks still constitute a principal threat for hierarchical Software Defined Network (SDN), such as flow table tampering, malicious Application attacks, Distributed Denial of Service (DDoS) etc., due to the limitation against attacks based on known or unknown vulnerabilities for traditional cyber defence technology. Therefore, this study proposes an active defence architecture based on Mimic Defence (MD)–Mimic Hierarchical SDN Framework (MHSDN). Then endogenous security of MHSDN is theoretically analysed. Simultaneously, the attack surface measurement of MD is innovatively proposed, further improving the security and usability measurement standards of the MD system. Finally, to speed up detection and reduce defence cost of DDoS, this research proposes the Random Forest Feature Extract (RFFE) and tolerable switch migration. Simulation shows that RFFE has achieved a faster detection speed at the cost of less detection accuracy, and MHSDN can better improve the reliability of hierarchical SDN. |
| format | Article |
| id | doaj-art-4c47950550674f2081724364bbadd4d8 |
| institution | Kabale University |
| issn | 1751-8709 1751-8717 |
| language | English |
| publishDate | 2023-01-01 |
| publisher | Wiley |
| record_format | Article |
| series | IET Information Security |
| spelling | doaj-art-4c47950550674f2081724364bbadd4d82025-02-03T06:45:06ZengWileyIET Information Security1751-87091751-87172023-01-0117110211710.1049/ise2.12080MHSDN: A Hierarchical Software Defined Network Reliability Framework designZhengbin Zhu0Qinrang Liu1Dongpei Liu2ChenYang Ge3Chong Wang4Institute of Information Technology Information Engineering University Zhengzhou ChinaNational Digital Switching System Engineering & Technological R&D Center Zhengzhou ChinaNational Digital Switching System Engineering & Technological R&D Center Zhengzhou ChinaInstitute of Cyberspace Security Zhengzhou University Zhengzhou ChinaInstitute of Information Technology Information Engineering University Zhengzhou ChinaAbstract At present, attacks based on the vulnerability of the controller and flooding attacks still constitute a principal threat for hierarchical Software Defined Network (SDN), such as flow table tampering, malicious Application attacks, Distributed Denial of Service (DDoS) etc., due to the limitation against attacks based on known or unknown vulnerabilities for traditional cyber defence technology. Therefore, this study proposes an active defence architecture based on Mimic Defence (MD)–Mimic Hierarchical SDN Framework (MHSDN). Then endogenous security of MHSDN is theoretically analysed. Simultaneously, the attack surface measurement of MD is innovatively proposed, further improving the security and usability measurement standards of the MD system. Finally, to speed up detection and reduce defence cost of DDoS, this research proposes the Random Forest Feature Extract (RFFE) and tolerable switch migration. Simulation shows that RFFE has achieved a faster detection speed at the cost of less detection accuracy, and MHSDN can better improve the reliability of hierarchical SDN.https://doi.org/10.1049/ise2.12080 |
| spellingShingle | Zhengbin Zhu Qinrang Liu Dongpei Liu ChenYang Ge Chong Wang MHSDN: A Hierarchical Software Defined Network Reliability Framework design IET Information Security |
| title | MHSDN: A Hierarchical Software Defined Network Reliability Framework design |
| title_full | MHSDN: A Hierarchical Software Defined Network Reliability Framework design |
| title_fullStr | MHSDN: A Hierarchical Software Defined Network Reliability Framework design |
| title_full_unstemmed | MHSDN: A Hierarchical Software Defined Network Reliability Framework design |
| title_short | MHSDN: A Hierarchical Software Defined Network Reliability Framework design |
| title_sort | mhsdn a hierarchical software defined network reliability framework design |
| url | https://doi.org/10.1049/ise2.12080 |
| work_keys_str_mv | AT zhengbinzhu mhsdnahierarchicalsoftwaredefinednetworkreliabilityframeworkdesign AT qinrangliu mhsdnahierarchicalsoftwaredefinednetworkreliabilityframeworkdesign AT dongpeiliu mhsdnahierarchicalsoftwaredefinednetworkreliabilityframeworkdesign AT chenyangge mhsdnahierarchicalsoftwaredefinednetworkreliabilityframeworkdesign AT chongwang mhsdnahierarchicalsoftwaredefinednetworkreliabilityframeworkdesign |