BlackNurse-SC: A Novel Attack on SDN Controller
Software-Defined Network (SDN) makes the network programmable by offloading the network modules to the controller in the control plane. Though the controller offers several security features, it is susceptible to attacks. In this letter, we introduce a novel attack named BlackNurse against the SDN C...
Uložené v:
| Vydané v: | IEEE communications letters Ročník 25; číslo 7; s. 2146 - 2150 |
|---|---|
| Hlavní autori: | , |
| Médium: | Journal Article |
| Jazyk: | English |
| Vydavateľské údaje: |
New York
IEEE
01.07.2021
The Institute of Electrical and Electronics Engineers, Inc. (IEEE) |
| Predmet: | |
| ISSN: | 1089-7798, 1558-2558 |
| On-line prístup: | Získať plný text |
| Tagy: |
Pridať tag
Žiadne tagy, Buďte prvý, kto otaguje tento záznam!
|
| Shrnutí: | Software-Defined Network (SDN) makes the network programmable by offloading the network modules to the controller in the control plane. Though the controller offers several security features, it is susceptible to attacks. In this letter, we introduce a novel attack named BlackNurse against the SDN Controller (BlackNurse-SC). BlackNurse-SC targets to bring down the controller and create a Denial of Service (DoS) to the whole network. The attacker disrupts the controller by sending out false error messages from his bots. BlackNurse-SC has two salient features. First, the attacker need not generate a flood of malicious packets, thus making it difficult for the controller to detect that it is subject to attack. Second, the attacker poisons the network topology view, which leads to improper functioning of the controller. We launch the attack in our SDN testbed to ascertain the effects it can create in the network. BlackNurse-SC brought down the controller within 20 seconds. |
|---|---|
| Bibliografia: | ObjectType-Article-1 SourceType-Scholarly Journals-1 ObjectType-Feature-2 content type line 14 |
| ISSN: | 1089-7798 1558-2558 |
| DOI: | 10.1109/LCOMM.2021.3075898 |