DPSec: A blockchain-based data plane authentication protocol for SDNs
dc.contributor.author | Latah, Majd | |
dc.contributor.author | Çakmakçı, Kübra Kalkan | |
dc.contributor.editor | Alsmirat, M. | |
dc.contributor.editor | Jararweh, Y. | |
dc.contributor.editor | Aloqaily, M. | |
dc.contributor.editor | Ozkasap, O. | |
dc.date.accessioned | 2021-03-10T13:03:48Z | |
dc.date.available | 2021-03-10T13:03:48Z | |
dc.date.issued | 2020-11-02 | |
dc.identifier.uri | http://hdl.handle.net/10679/7378 | |
dc.identifier.uri | https://ieeexplore.ieee.org/document/9274449 | |
dc.description.abstract | Software-Defined Networking (SDN) is a promising networking architecture that enables central management along with network programmability. However, SDN brings additional security threats due to untrusted control and data planes. In this work, we focus on authenticating SDN's data plane since it can be exploited to attack SDN's control plane. As a result, the whole SDN network will be paralysed. On the other hand, Blockchain (BC) can be utilized to provide more secure data plane by introducing a fault-tolerant, decentralized and secure ledger without relying on any trusted third-party intermediaries. To this end, in this work we propose, DPSec, a consortium BC-based protocol for authenticating SDN's data plane including SDN switches and hosts. We also provide a proof-of-concept that demonstrates the applicability and feasibility of our protocol in SDNs. Finally, we present a security analysis that shows how DPSec can address several attacks against SDNs including CVE-2018-1000155 vulnerability [1] that targets SDN controllers due to the untrusted data plane. | en_US |
dc.language.iso | eng | en_US |
dc.publisher | IEEE | en_US |
dc.relation.ispartof | 2020 Second International Conference on Blockchain Computing and Applications (BCCA) | |
dc.rights | restrictedAccess | |
dc.title | DPSec: A blockchain-based data plane authentication protocol for SDNs | en_US |
dc.type | Conference paper | en_US |
dc.publicationstatus | Published | en_US |
dc.contributor.department | Özyeğin University | |
dc.contributor.authorID | (ORCID 0000-0003-1918-8587 & YÖK ID 165356) Kalkan, Kübra | |
dc.contributor.ozuauthor | Çakmakçı, Kübra Kalkan | |
dc.identifier.startpage | 22 | en_US |
dc.identifier.endpage | 29 | en_US |
dc.identifier.wos | WOS:000848747500004 | |
dc.identifier.doi | https://doi.org/10.1109/BCCA50787.2020.9274449 | en_US |
dc.subject.keywords | Blockchain (BC) | en_US |
dc.subject.keywords | Network security | en_US |
dc.subject.keywords | Software-defined networking (SDN) | en_US |
dc.identifier.scopus | SCOPUS:2-s2.0-85098702142 | |
dc.contributor.ozugradstudent | Latah, Majd | |
dc.relation.publicationcategory | Conference Paper - International - Institutional Academic Staff and PhD Student |
Files in this item
Files | Size | Format | View |
---|---|---|---|
There are no files associated with this item. |
This item appears in the following Collection(s)
Share this page