首页    期刊浏览 2024年12月12日 星期四
登录注册

文章基本信息

  • 标题:Detection of Security and Safety Threats related to the Control of a SDN Architecture
  • 本地全文:下载
  • 作者:Loïc Desgeorges ; Jean-Philippe Georges ; Thierry Divoux
  • 期刊名称:IFAC PapersOnLine
  • 印刷版ISSN:2405-8963
  • 出版年度:2021
  • 卷号:54
  • 期号:4
  • 页码:153-158
  • DOI:10.1016/j.ifacol.2021.10.026
  • 语种:English
  • 出版社:Elsevier
  • 摘要:AbstractSoftware Defined Networking is a concept within the networking field which proposed a centralized control considering the control and data planes. To overcome the safety and security threats, solutions might be divided into two categories: enforcing the controller to make it more robust or the architecture using a multi-controller approach. This work aims to pave the way for a multi-controller architecture without East-West interface to avoid the spreading of an attack. There is one nominal controller in charge of the control while the second observes the traffic at the Southbound interface to detect anomalies of control. A detection method is introduced theoretically and relies on Intrusion Detection System theory, more precisely the specification-based. Here, the specification is a template determined through a projection function of the control logic. The template is compared to the activity of the command observed such that any deviation generates an alarm. The method is finally explained in use cases.
  • 关键词:KeywordsSoftware-Defined NetworkingSafetySecurityMulti-ControllersObservability
国家哲学社会科学文献中心版权所有