DSpace Repository
Fast and accurate detection of compromised switches in software-defined networks
JavaScript is disabled for your browser. Some features of this site may not work without it.
| dc.contributor.advisor | Hossain, Dr. Md. Shohrab | |
| dc.contributor.author | Sakib, Md. Iftekharul Islam | |
| dc.date.accessioned | 2019-03-09T09:27:22Z | |
| dc.date.available | 2019-03-09T09:27:22Z | |
| dc.date.issued | 2018-07-11 | |
| dc.identifier.uri | http://lib.buet.ac.bd:8080/xmlui/handle/123456789/5137 | |
| dc.description.abstract | Software-Defined Networking (SDN) has emerged as one of the significant network architectures that decouples the network’s control plane from the data plane. Due to the noteworthy scope of innova- tion with reduced cost of management and many built-in salient features, SDN has recently gained unparalleled attention both from industry and academia. Though SDN resolves many existing se- curity threats, it suffers from traditional network security threats as well as new threats related to its decentralized architecture. Most of the proposals that have been made recently to resolve security vul- nerabilities in all layers of SDN, will not function when one or more switches in the network behave abnormally or do not follow the commands from SDN controller. Therefore, a compromised switch will bring colossal network adversity as it may launch DoS, Eavesdropping, Man-in-the-middle, and Topology spoofing attacks other than disobeying controller’s command. Recent works accomplish the goal of detecting compromised switch in SDN by sending probe packets or analyzing flow statistics. These existing approaches have many weak links such as high traffic overhead for detection or high false positive detection rate. These approaches also work under some unrealistic assumptions, such as no collaboration among malicious switches, no flow statistics alteration by the attacker, etc. In this thesis, a hybrid and real-time detection framework “FADCS” has been developed which would work efficiently with a view to lessening the weakness of existing available approaches. “FADCS” has been developed as an application in “Floodlight” controller and its performance has been evaluated in a simulation environment built using Mininet and FNSS. The experiment result assures that “FADCS” can successfully detect all major unruly forwarding behavior of a compromised switch in real-time with zero false positive detection rate and without incurring a great network traffic overhead. | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | Department of computer Science and Engineering | en_US |
| dc.subject | Software-Defined networking (Computer network technology) | en_US |
| dc.title | Fast and accurate detection of compromised switches in software-defined networks | en_US |
| dc.type | Thesis-MSc | en_US |
| dc.contributor.id | 1014052002 | en_US |
| dc.identifier.accessionNumber | 116784 | |
| dc.contributor.callno | 004.6/IFT/2018 | en_US |
Files in this item
This item appears in the following Collection(s)
-
Dissertation/Theses - Department of Computer Science and Engineering
Post graduate dissertations (Thesis) of Computer Science Engineering (CSE)