Visible to the public The Smaller, the Shrewder: A Simple Malicious Application Can Kill an Entire SDN Environment

TitleThe Smaller, the Shrewder: A Simple Malicious Application Can Kill an Entire SDN Environment
Publication TypeConference Paper
Year of Publication2016
AuthorsLee, Seungsoo, Yoon, Changhoon, Shin, Seungwon
Conference NameProceedings of the 2016 ACM International Workshop on Security in Software Defined Networks & Network Function Virtualization
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-4078-6
KeywordsAttack, composability, Metrics, network control systems, network control systems security, networked control systems, pubcrawl, Resiliency, security, software-defined networking
Abstract

Security vulnerability assessment is an important process that must be conducted against any system before the deployment, and emerging technologies are no exceptions. Software-Defined Networking (SDN) has aggressively evolved in the past few years and is now almost at the early adoption stage. At this stage, the attack surface of SDN should be thoroughly investigated and assessed in order to mitigate possible security breaches against SDN. Inspired by the necessity, we reveal three attack scenarios that leverage SDN application to attack SDNs, and test the attack scenarios against three of the most popular SDN controllers available today. In addition, we discuss the possible defense mechanisms against such application-originated attacks.

URLhttp://doi.acm.org/10.1145/2876019.2876024
DOI10.1145/2876019.2876024
Citation Keylee_smaller_2016