Piggybacking Network Functions on SDN Reactive Routing: A Feasibility Study
| Title | Piggybacking Network Functions on SDN Reactive Routing: A Feasibility Study |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Liu, Chang, Raghuramu, Arun, Chuah, Chen-Nee, Krishnamurthy, Balachander |
| Conference Name | Proceedings of the Symposium on SDN Research |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-4947-5 |
| Keywords | augmented reality, Human Behavior, Network security, privacy, pubcrawl, resilience, Resiliency, Scalability, SDN |
| Abstract | This paper explores the potential of enabling SDN security and monitoring services by piggybacking on SDN reactive routing. As a case study, we implement and evaluate a piggybacking based intrusion prevention system called SDN-Defense. Our study of university WiFi traffic traces reveals that up to 73% of malicious flows can be detected by inspecting just the first three packets of a flow, and 90% of malicious flows from the first four packets. Using such empirical insights, we propose to forward the first K packets of each new flow to an augmented SDN controller for security inspection, where K is a dynamically configurable parameter. We characterize the cost-benefit trade-offs of SDN-Defense using real wireless traces and discuss potential scalability issues. Finally, we discuss other applications which can be enhanced by using our proposed piggybacking approach. |
| URL | https://dl.acm.org/citation.cfm?doid=3050220.3050225 |
| DOI | 10.1145/3050220.3050225 |
| Citation Key | liu_piggybacking_2017 |