poster

Detection of Topology Poisoning by Silent Relay Attacker in SDN

Authors:

Pragati Shrivastava,

Annanay Agarwal,

Kotaro KataokaAuthors Info & Claims

MobiCom '18: Proceedings of the 24th Annual International Conference on Mobile Computing and Networking

Pages 792 - 794

https://doi.org/10.1145/3241539.3267763

Published: 15 October 2018 Publication History

Get Access

Abstract

Topology Poisoning can be easily performed by injecting a fake link between SDN switches using a silent relay attack. This attack is difficult to detect because 1) the attacker is a passive man-in-the-middle to relay control messages between the compromised ports on SDN switches, and 2) such messages are genuine for the SDN switches and controller. This poster proposes Silent Relay Detector (SRD) that tailor- makes the SDN control messages to be processed normally by authentic switches but to make the attacker malfunction. The SRD implementation and experiment reveal how the silent relay attack is detected and fake link injection is prohibited ingeniously.

References

[1]

Shang Gao, Zecheng Li, et al. 2018. Security Threats in the Data Plane of Software-Defined Networks. IEEE Network (2018).

Google Scholar

[2]

Sungmin Hong, Lei Xu, et al. 2015. Poisoning Network Visibility in Software-Defined Networks: New Attacks and Countermeasures. In NDSS, Vol. 15.

Crossref

Google Scholar

[3]

Richard Skowyra, Lei Xu, et almbox. 2018. Effective Topology Tampering Attacks and Defenses in Software-Defined Networks (DSN). In IEEE/IFIP International Conference on Dependable Systems and Networks.

Google Scholar

Cited By

View all

Zhang TWang Y(2024)Attopo: An SDN Non-Protocol Topology Discovery Method Based on Attention Mechanism and Network Flow AnalysisIEEE Access10.1109/ACCESS.2024.341538412(182190-182202)Online publication date: 2024
https://doi.org/10.1109/ACCESS.2024.3415384
Liu YWang YFeng H(2024)A novel link fabrication attack detection method for low-latency SDN networksJournal of Information Security and Applications10.1016/j.jisa.2024.10380784(103807)Online publication date: Aug-2024
https://doi.org/10.1016/j.jisa.2024.103807
Kong DShen YChen XCheng QLiu HZhang DLiu XChen SWu C(2023)Combination Attacks and Defenses on SDN Topology DiscoveryIEEE/ACM Transactions on Networking10.1109/TNET.2022.320356131:2(904-919)Online publication date: Apr-2023
https://doi.org/10.1109/TNET.2022.3203561
Show More Cited By

Index Terms

Detection of Topology Poisoning by Silent Relay Attacker in SDN
1. Networks
  1. Network properties
    1. Network security
  2. Network services
    1. Programmable networks

Recommendations

An In-depth Look Into SDN Topology Discovery Mechanisms: Novel Attacks and Practical Countermeasures
CCS '19: Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security

Software-Defined Networking (SDN) is a novel network approach that has revolutionised existent network architectures by decoupling the control plane from the data plane. Researchers have shown that SDN networks are highly vulnerable to security attacks. ...
Performance impact of topology poisoning attack in SDN and its countermeasure
SIN '17: Proceedings of the 10th International Conference on Security of Information and Networks

Topology Discovery is a crucial task for a controller in Software Defined Networks (SDN). In this paper, we present an attack model to disturb topology discovery service of controller, by injecting fake links in the network. Our attack model assumes, ...
SECAP Switch—Defeating Topology Poisoning Attacks Using P4 Data Planes
Abstract
Programmable networking is evolving from programmable control plane solutions such as OpenFlow-based software-defined networking (SDN) to programmable data planes such as P4-based SDN. To support the functionality of the SDN, the correct view of ...

Comments

Information & Contributors

Information

Published In

MobiCom '18: Proceedings of the 24th Annual International Conference on Mobile Computing and Networking

October 2018

884 pages

ISBN:9781450359030

DOI:10.1145/3241539

General Chairs:
Rajeev Shorey
TCS Innovation Labs, India
,
Rohan Murty
Soroco, USA/India
,
Program Chairs:
Yingying (Jennifer) Chen
WINLAB, Rutgers University, USA
,
Kyle Jamieson
Princeton University, USA

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 15 October 2018

Check for updates

Author Tags

Qualifiers

Poster

Conference

MobiCom '18

Sponsor:

SIGMOBILE

MobiCom '18: The 24th Annual International Conference on Mobile Computing and Networking

October 29 - November 2, 2018

New Delhi, India

Acceptance Rates

MobiCom '18 Paper Acceptance Rate 42 of 187 submissions, 22%;

Overall Acceptance Rate 440 of 2,972 submissions, 15%

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

4
Total Citations
View Citations
329
Total Downloads

Downloads (Last 12 months)9
Downloads (Last 6 weeks)0

Reflects downloads up to 06 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Zhang TWang Y(2024)Attopo: An SDN Non-Protocol Topology Discovery Method Based on Attention Mechanism and Network Flow AnalysisIEEE Access10.1109/ACCESS.2024.341538412(182190-182202)Online publication date: 2024
https://doi.org/10.1109/ACCESS.2024.3415384
Liu YWang YFeng H(2024)A novel link fabrication attack detection method for low-latency SDN networksJournal of Information Security and Applications10.1016/j.jisa.2024.10380784(103807)Online publication date: Aug-2024
https://doi.org/10.1016/j.jisa.2024.103807
Kong DShen YChen XCheng QLiu HZhang DLiu XChen SWu C(2023)Combination Attacks and Defenses on SDN Topology DiscoveryIEEE/ACM Transactions on Networking10.1109/TNET.2022.320356131:2(904-919)Online publication date: Apr-2023
https://doi.org/10.1109/TNET.2022.3203561
Kumar AShuka S(2021)Topology Validator - Defense Against Topology Poisoning Attack in SDNQuality, Reliability, Security and Robustness in Heterogeneous Systems10.1007/978-3-030-91424-0_15(241-260)Online publication date: 17-Nov-2021
https://doi.org/10.1007/978-3-030-91424-0_15

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Index Terms

Recommendations

An In-depth Look Into SDN Topology Discovery Mechanisms: Novel Attacks and Practical Countermeasures

Performance impact of topology poisoning attack in SDN and its countermeasure

SECAP Switch—Defeating Topology Poisoning Attacks Using P4 Data Planes

Comments

Information

Published In

Sponsors

Publisher

Publication History

Check for updates

Author Tags

Qualifiers

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations