LIÊN KẾT WEBSITE
Secured-OFS: A novel OpenFlow switch architecture with integrated security functions
Advances in Intelligent Systems and Computing Số , năm 2017 (Tập 538 AISC, trang 530-540)
ISSN: 9783319490724
ISSN: 9783319490724
DOI: 10.1007/978-3-319-49073-1_57
Tài liệu thuộc danh mục: Scopus
Final
English
Từ khóa: Computer crime; Denial-of-service attack; Internet protocols; Network architecture; Network protocols; Software defined networking; Ddos defense techniques; Hop-count filtering; Maximum through-put; Multiple networks; Novel architecture; Openflow networks; Prototype versions; Security functions; Network security
Tóm tắt tiếng anh
Although OpenFlow network protocol is a promising network approach with many advantages compared to traditional network approaches, it still suffers from network attacks. In this paper, we propose a novel architecture for an OpenFlow-based switch with associated multiple network security techniques, so-called Secured-OFS. The proposed Secured-OFS can not only function as a switch following the OpenFlow protocol but also help protect a network against many attack types. We implement the first FPGA-based prototype version of our proposed Secured-OFS using a Xilinx Virtex 5 xc5vtx240t device. In this first prototype version, we integrate two different DDoS defense techniques, Hop-Count Filtering and Port Ingress/Egress Filtering. The experimental results show that the switch not only fulfills the OpenFlow protocol but also be able to defense against DDoS attacks. The system achieves a maximum throughput at 19.729 Gbps while a 100% DDoS attack detection rate is obtained. Springer International Publishing AG 2017.