2.) Abstract:
The project focuses on the cost effective enhancement of enterprise network security via OpenFlow controlled switches and specialized SDN applications running on a controller. The project will investigate on securing the network from various attacks like ping attack, TCP SYN attack, Distributed Denial of Service (DDoS), DHCP attack. Different security measures will be discussed through which the user can establish a secured network. These security measures will be implemented over SDN.
3.) Objectives:
The main objective of this project is to enhance the security of a network using various modern day technologies.
1) The enhancement in the security of the network will mitigate the attacks like Denial of Service attacks.
2) It will also help in controlling the data and control plane of the networking devices, which will enable more options to enhance the security.
The project focusses on using the advantages and applications of the Software Defined Networking (SDN) technology. By implementing Security measures in SDN, one can develop a network that will be free from several network attacks like ping attack, TCP SYN attack, probing, Denial of Service, Distributed Denial of Service and several other scanning attacks. Another point to mention is that if an administrator had to implement all these security measures in a traditional network, he would have to configure all the networking equipment separately with the
Networking is part of our everyday lives now. Weather is us using our phones, computer, using GPS for directions, watching 3D movies and TV’s or in our work environments. Network Security has become search a big issue since our day to day live started to be more involve with us. These problems involve in all type of shapes and forms where some of these issues are cyber attacks, physical attacks, or abuse of policies. People are really exposed due to the amount of internet activities we have going on in most of our networks. There are two fundamentally different when it comes to networking, the data networks and the synchronous network comprised of switches. With that being said there are also
This will benefit me while generating a security strategy for the Network and its hardware.
Software defined networking is a new concept that redefined the current network device architecture and the way they behave. Due to the exponential growth of the Internet and services attached to this worldwide infrastructure, a number of issues have cropped up in modern day networks. This paper discusses a few of these limitations and how the software defined networking approach tries to alleviate them. OpenFlow, released in the year 2008, is a commercially viable implementation of this concept that is being well received by the networking industry at large. The paper also discusses the OpenFlow protocol, its implementation and the challenges facing its widespread acceptance
Software Defined Networking (SDN) is a way to construct networks virtually with software that can be hosted on one machine. These software can solve issues such as cost, scalability, and security.
Software Defined Networking (SDN) is a pattern of new technologies for permitting more prominent control of how networks work. As opposed to a genuinely static network that must be controlled by exclusive merchant particular protocols, with at times restricted deceivability into the internals of layer 2 gadgets like switches, SDN considers experimentation in enhancing and arranging how the network functions. Furthermore, SDN can be controlled utilizing product server equipment, which can add to the reasonableness and expense reserve funds. The major advantage of Software Defined Networking based technologies is that it separates the data plane and control
Implementation of security measures in SDN can free a network from several network attacks like Denial of Service (DoS) attacks. Another point to be noted is that, if an administrator had to upgrade the security measures in a traditional network, he would have to configure all the networking equipment separately with the required security measures. If the administrator needs to make any future changes to the network, he would have to again have to update on each and every device separately. This method demands a lot of resources and time. But the implementation of these security measures in a SDN controller can lead to updating all the devices in the network at one go. This leads to mitigating different kinds of network attacks at one go. This is the objective of this project.
May keep costs low, as you only have to pay for what you use, and don’t need to make significant upfront investments.
The major goal of Software Defined networks is separate the control plane and the data plane and passing the control to a SDN controller for the programmability of the network resources. The SDN architecture consist of basically 3 layers- (i) the infrastructure layer (ii) the control layer and (iii) the application layer (from top to bottom). The connecting interface between the control and application layer is termed as the NorthBound Interface while between the control layer and the infrastructure layer is termed as SouthBound Interface. The SouthBound Interface uses the Open Flow Protocol to communicate with the lower level switches. The Controller is the main intelligent device present in the architecture that offers a centralized view of the whole network [1].
The controller in the SDN are centralized instead of distributed and it have a global view of the network and the network administrators can adjust the traffic flows all over the network if there is need of some change. SDN is also described as a model which represents a client-server relationship with the controller. In SDN the service customer can send or receive the data with the help of the network resources and the network servies can be managed by the controller. The responsibilities of the service provider include virtualization and orchestration of the resources which could be used by the customers. One of the main problem to be solved in most of the network areas is security. For SDN the security should be in the basic architecture also it should be provided as a service to the users in order to shield the privacy and the integrity of the information flowing. In the SDN architecture we can secure the network in various ways such as by controlling the SDN controller in very tight manner. In case of any attack where the SDN controller and the network goes down
Abstract—Software-Defined Networking (SDN) is a new intelligent architecture which is composited by several kinds of network technology aimed at making the network as agile and flexible as possible. The SDN Controller is one of the most important components in the SDN architecture. The SDN Controller can help the network architecture to reduce hardware limitations, and allowing network engineers and administrators to respond quickly to changing business requirement. It indicates the perfect relationships between software
Software Defined Network (SDN) Controllers are software applications that are able to perform network functions in an independent manner. They work as the brain of the network and take decisions based on fixed policies and the load present on the network, just like physical switches and network modules. SDNs are the technology of the future, and researchers around the world are eager to produce applications that employ them in various applications. Currently, researchers are finding out the important parameters of SDNs in order to use them on a larger, more unified scale. We will take a look at some important literature studies that have been recently presented on the topic of SDNs. Most of these studies were represented as conference
The SDN layer essentially acts a virtual software switch or router in place of (or in conjunction with) the physical network devices. Software from outside the devices takes over the job, instead of software embedded in the routers and switches managing the traffic. The network layout, or topography, is no longer rooted in the physical. Instead, it 's flexible and adjustable to the systems’ needs on the fly. SDN promises to solve both cost of labor performing manual maintenance and administrative tasks in one single blow to the status quo. Traffic engineering problem for SDN controller is to route the traffic in such a way that the delay and packet loss at link are minimized. In existing scenario SDN controllers are deployed incrementally. In proposed system SDN controllers are deployed in tree like structure such that lower level controller is controlled by upper level controller so that all the network is controlled by single SDN controller centrally. Making possible to centralized control over the global view of network with improved architecture will be considered.
In this paper, we survey the SDN literature and aim at presenting the definition of SDN and its architectural principle. We also discuss about research
The architecture of SDN allows the controller to control data plane resources. SDN simplifies the configuration of the wide range of resources that are available. SDN must be applicable within systems that already exist which contain many organizations with the need for security of the information that is being shared. Limitations in the real world include the need to exist with the present support systems, administrative or technology fields. Functional subsets maybe summarized from the SDN architecture if the environment is not as complex. Standardization, validation and integration are minimized whenever required, using simple mechanisms. A complex system is partitioned into modular parts in architecture. This helps in managing the level of complexity and reusing the components in order to meet other practical or business goals. Component partitioning is an added advantage when it comes to the type of services delivered to the end user.
Organizations are working to develop and implement more automation and intelligence into their networks. They are also trying to find methods to reduce Capital Expenditure (CAPEX) and Operational Expenditure (OPEX) while deploying new networks or when they are growing their networks on a large-scale basis. Software-Defined Networking (SDN) provides the best experience in terms of easy, and efficient network management using automation, virtualization, and scalability. SDN also helps in reducing CAPEX and OPEX by allowing reusability of the same hardware for multiple scenarios.