篇名 |
Flow Table Overflow Attacks in Software Defined Networks: A Survey
|
---|---|
並列篇名 | Flow Table Overflow Attacks in Software Defined Networks: A Survey |
作者 | Changqing Zhao、Ling Xia Liao、Han-Chieh Chao、Roy Xiaorong Lai、Miao Zhang |
英文摘要 | While Software-Defined Networks (SDNs) have separated control and data planes and completely decouple the flow control from the data forwarding to enable network flexibility, programmability, and innovation, they also raise serious security concerns in each plane and the interfaces between the two planes. This paper, instead of studying the security issues in the SDN control plane as many literatures have done in current research, focuses on the security issues in the SDN data plane, aiming at the state of the art mechanims to identify, detect, and mitigate them. Specifically, this paper reviews the typical models, detections, and mitigations of SDN flow table overflow attacks. After reviewing the various vulnerabilities in SDNs, this paper categorizes the flow table overflow attacks into saturation, low-rate table exhaustion, and slow saturation attacks, and summarizes the attack models, detections, and mitigations of each category. It reviews the typical attacks that can overflow the flow tables and provides the main challenges and open issues for the future research.
|
起訖頁 | 1391-1401 |
關鍵詞 | SDN、Saturation attack、Low-rate table exhaustion attack、Slow saturation attack |
刊名 | 網際網路技術學刊 |
期數 | 202312 (24:7期) |
出版單位 | 台灣學術網路管理委員會 |
DOI |
|
QR Code | |
該期刊 下一篇
| Using Improved YOLOv5 Model to Detect Volume for Logs in Log Farms |