iClassMFT: Proposed Multiple Flow Tables Classes to Integrate Security and Flexibility into SDN Switches

Good interaction between the SDN controller and OpenFlow switches has been crucial for efficient application development. However, as with traditional networks, OpenFlow-based networks are also subject to problems. Aiming to topple the network, DDoS attacks have been one of the main weapons used by...

Full description

Saved in:
Bibliographic Details
Published in2019 International Conference on Computational Science and Computational Intelligence (CSCI) pp. 1422 - 1427
Main Authors Amaro Galhardo, Edwardes, Oliveira, Antonio Carlos
Format Conference Proceeding
LanguageEnglish
Published IEEE 01.12.2019
Subjects
Computer crime
Control systems
DDoS
Mininet
Periodic structures
Protocols
Real-time systems
RYU
SDN
Online AccessGet full text

Cover

More Information
Summary:Good interaction between the SDN controller and OpenFlow switches has been crucial for efficient application development. However, as with traditional networks, OpenFlow-based networks are also subject to problems. Aiming to topple the network, DDoS attacks have been one of the main weapons used by attackers. This paper proposes iClassMFT, a solution for effectively mitigating real-time DDoS attacks through an SDN framework composed of switches configured with multiple flow table classes that can still offer flexible network control. Experiments using Mininet show that the proposed solution can minimize the impact of DDoS attacks and aid the controller maintain acceptable network performance during these attacks.
DOI:10.1109/CSCI49370.2019.00266