Print Email Facebook Twitter Investigating current state Security of OpenFlow Networks Title Investigating current state Security of OpenFlow Networks: Focusing on the control-data plane communications Author Pors, Marlou (TU Delft Electrical Engineering, Mathematics and Computer Science) Contributor Kuipers, Fernando (mentor) Dominguez, Francisco (mentor) Doerr, Christian (graduation committee) Degree granting institution Delft University of Technology Date 2017-07-06 Abstract Software-Defined Networking (SDN) is the emerging paradigm that breaks vertical integration in networks, separating the network’s control logic from the underlying network devices such as routers and switches.The decoupling of this data plane and control plane, there is need for a new communication channel which is used for the communication between the SDN controller and the network devices.This channel is the so-called control channel and a popular protocol used over this channel is OpenFlow.In this work we focus on the security of SDN while focusing on the control channel and the OpenFlow protocol. In example, we show several impersonation attacks and achieve denial-of-service by misusing the ARP protocol to generate a lot of OpenFlow traffic.We also discuss how we can protect SDN against such attacks in order to improve SDN security.This work has been performed at the IT security company Fox IT. Subject Software Defined NetworkingOpenFlowSecurity To reference this document use: http://resolver.tudelft.nl/uuid:7c917480-5eb3-46e2-93be-07e95efa30fd Part of collection Student theses Document type master thesis Rights © 2017 Marlou Pors Files PDF M.L._Pors_Master_Thesis_Report.pdf 2.05 MB Close viewer /islandora/object/uuid:7c917480-5eb3-46e2-93be-07e95efa30fd/datastream/OBJ/view