ARCHITECTURE BASED ON TOR NETWORK FOR SECURING THE COMMUNICATION OF NORTHBOUND INTERFACE IN SDN

• Published in: Compusoft: an international journal of advanced computer technology Vol. 9; no. 7; pp. 3755 - 3761
• Main Authors: Ahmed, Osman, MohdYusof, Mohammad Hafiz
• Format: Journal Article
• Language: English
• Published: Mumbai COMPUSOFT, An International Journal of Advanced Computer Technology 01.07.2020
• Subjects: Blockchain; Communication; Computer architecture; Cybersecurity; Digital signatures; Encryption; Fingerprinting; Network security; New technology; Privacy; Software; Software-defined networking; Virtual environments
• ISSN: 2320-0790

Software-defined networking (SDN) is an emerging technology that has separated its architecture into three layers. Applications layer and Control layer communicates through the Northbound Interface (NBI), these communications can be targeted to fingerprinting even with the encryption applied. With the growth of cyber-attacks and zero-day vulnerabilities in network environments, SDN is more open to security issues than other technologies due to the isolation of its architecture. In this paper, we proposed a new architecture to add an extra layer of Tor network to anonymize the communication of NBI, the development of the combination of SDN and Tor experiment using VMware virtual machines for SDN controller, GNS3 networks and Wireshark for NBI traffic analysis. In the results of maximizing the security of SDN, anonymous communication can prevent NBI from the fingerprinting by allowing the requests and response messages going through multiple nodes before reaching the destination comparing with the current SDN architecture that using direct communications. Lastly, we discussed the results towards the STRIDE model to show and ensure how the combination of SDN and Tor can provide the security and privacy to the SDN Network