Analysis and Evaluation of OpenFlow Message Usage for Security Applications - Management and Security in the Age of Hyperconnectivity
Conference Papers Year : 2016

Analysis and Evaluation of OpenFlow Message Usage for Security Applications

Gaëtan Hurel
  • Function : Author
  • PersonId : 947219
Rémi Badonnel
  • Function : Author
  • PersonId : 947216

Abstract

With the advances in cloud computing and virtualization technologies, Software-Defined Networking (SDN) has become a fertile ground for building network applications regarding management and security using the OpenFlow protocol giving access to the forwarding plane. This paper presents an analysis and evaluation of OpenFlow message usage for supporting network security applications. After describing the considered security attacks, we present mitigation and defence strategies that are currently used in SDN environments to tackle them. We then analyze the dependencies of these mechanisms to OpenFlow messages that support their instantiation. Finally, we conduct series of experiments on software and hardware OpenFlow switches in order to validate our analysis and quantify the limits of current security mechanisms with different OpenFlow implementations.
Fichier principal
Vignette du fichier
385745_1_En_9_Chapter.pdf (617.06 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01632745 , version 1 (10-11-2017)

Licence

Identifiers

Cite

Sebastian Seeber, Gabi Dreo Rodosek, Gaëtan Hurel, Rémi Badonnel. Analysis and Evaluation of OpenFlow Message Usage for Security Applications. 10th IFIP International Conference on Autonomous Infrastructure, Management and Security (AIMS), Jun 2016, Munich, Germany. pp.84-97, ⟨10.1007/978-3-319-39814-3_9⟩. ⟨hal-01632745⟩
550 View
298 Download

Altmetric

Share

More