TopoTrust : a blockchain-based trustless and secure topology discovery in SDNs
Adjou, Mohamed Lamine; Benzaïd, Chafika; Taleb, Tarik (2022-07-19)
M. L. Adjou, C. Benzaïd and T. Taleb, "TopoTrust: A Blockchain-based Trustless and Secure Topology Discovery in SDNs," 2022 International Wireless Communications and Mobile Computing (IWCMC), 2022, pp. 1107-1112, doi: 10.1109/IWCMC55113.2022.9825045.
© 2022 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
https://rightsstatements.org/vocab/InC/1.0/
https://urn.fi/URN:NBN:fi-fe2022092660094
Tiivistelmä
Abstract
The Software Defined Network (SDN) architecture decouples the control functionality from the forwarding devices and implements it in a separate entity known as the controller. This raises new concerns on securing the control messages exchanged between the controller and the forwarding devices. In this paper, we propose TopoTrust, a novel fully trustless authenticity and integrity verification mechanism that relies on a Blockchain protocol to detect network topology poisoning attacks, namely Host Tracking Service (HTS) and OpenFlow Discovery Protocol (OFDP). The key merit of TopoTrust is its ability to operate in a zero trust SDN environment where no controller or switch is trusted. The evaluation of our protocol shows that it can successfully detect any spoofing-based and packet tampering attacks; and up to 96% and 100% of Fast Relocation and Link Fabrication attacks respectively within a short detection time, while introducing small overhead to the network.
Kokoelmat
- Avoin saatavuus [31657]