본문 바로가기
  • Home

Establishment of Testbed for Detection of Harmful Traffic in SDN-based Network

  • Journal of Knowledge Information Technology and Systems
  • Abbr : JKITS
  • 2017, 12(3), pp.465-472
  • DOI : 10.34163/jkits.2017.12.3.009
  • Publisher : Korea Knowledge Information Technology Society
  • Research Area : Interdisciplinary Studies > Interdisciplinary Research
  • Published : June 30, 2017

김정윤 1

1경희대학교

Accredited

ABSTRACT

SDN-based networks have many advantages over existing networks. SDN is different from existing network configuration It is a method of delivering packets based on software functions in network equipment, which has many advantages in terms of cost and operation over existing network structure. However, since it is built around OpenFlow, which is the most widely known interface in SDN, it is also vulnerable to security. So SDN tried to solve this by providing virtualized security function based on NFV(Network Function Virtualization). The advantage of NFV is that it is possible to apply security only to the place where security is needed by using controller without need to set up like existing equipment. In this paper, I tried to investigate a method to filter harmful traffic without the ACL(Access Control List), ZFW(Zone-Based Firewall) and other functions set in the security device in the NFV that operates for security in the SDN environment. The hardware-based security technologies currently used are inevitably subject to delays and can not be used to prevent security attacks that are executed in various ways by changing port numbers. Therefore, the purpose of this paper is to improve the security performance of SDN based on NFV by analyzing traffic pattern and filtering harmful traffic and nontoxic traffic. For this study, a test network based on actual SDN was constructed and the pattern - based harmful traffic detection technology was proved.

Citation status

* References for papers published after 2023 are currently being built.