Visible to the public SDN-Based IP Shuffling Moving Target Defense with Multiple SDN Controllers

TitleSDN-Based IP Shuffling Moving Target Defense with Multiple SDN Controllers
Publication TypeConference Paper
Year of Publication2019
AuthorsNarantuya, J., Yoon, S., Lim, H., Cho, J., Kim, D. S., Moore, T., Nelson, F.
Conference Name2019 49th Annual IEEE/IFIP International Conference on Dependable Systems and Networks – Supplemental Volume (DSN-S)
Date Publishedjun
Keywordscontrol systems, Controller dependency, delays, Distributed SDN controller, IP networks, moving target defense, Multiplexing, Predictive Metrics, pubcrawl, Resiliency, Scalability, SDN security, security, software-defined networking

Conventional SDN-based MTD techniques have been mainly developed with a single SDN controller which exposes a single point of failure as well as raises a scalability issue for large-scale networks in achieving both security and performance. The use of multiple SDN controllers has been proposed to ensure both performance and security of SDN-based MTD systems for large-scale networks; however, the effect of using multiple SDN controllers has not been investigated in the state-of-the-art research. In this paper, we propose the SDN based MTD architecture using multiple SDN controllers and validate their security effect (i.e., attack success probability) by implementing an IP shuffling MTD in a testbed using ONOS SDN controllers.

Citation Keynarantuya_sdn-based_2019