Publication:
DPSec: A blockchain-based data plane authentication protocol for SDNs

dc.contributor.authorLatah, Majd
dc.contributor.authorÇakmakçı, Kübra Kalkan
dc.contributor.departmentComputer Science
dc.contributor.editorAlsmirat, M.
dc.contributor.editorJararweh, Y.
dc.contributor.editorAloqaily, M.
dc.contributor.editorOzkasap, O.
dc.contributor.ozuauthorÇAKMAKCİ, Kübra Kalkan
dc.contributor.ozugradstudentLatah, Majd
dc.date.accessioned2021-03-10T13:03:48Z
dc.date.available2021-03-10T13:03:48Z
dc.date.issued2020-11-02
dc.description.abstractSoftware-Defined Networking (SDN) is a promising networking architecture that enables central management along with network programmability. However, SDN brings additional security threats due to untrusted control and data planes. In this work, we focus on authenticating SDN's data plane since it can be exploited to attack SDN's control plane. As a result, the whole SDN network will be paralysed. On the other hand, Blockchain (BC) can be utilized to provide more secure data plane by introducing a fault-tolerant, decentralized and secure ledger without relying on any trusted third-party intermediaries. To this end, in this work we propose, DPSec, a consortium BC-based protocol for authenticating SDN's data plane including SDN switches and hosts. We also provide a proof-of-concept that demonstrates the applicability and feasibility of our protocol in SDNs. Finally, we present a security analysis that shows how DPSec can address several attacks against SDNs including CVE-2018-1000155 vulnerability [1] that targets SDN controllers due to the untrusted data plane.en_US
dc.identifier.doi10.1109/BCCA50787.2020.9274449en_US
dc.identifier.endpage29en_US
dc.identifier.scopus2-s2.0-85098702142
dc.identifier.startpage22en_US
dc.identifier.urihttp://hdl.handle.net/10679/7378
dc.identifier.urihttps://doi.org/10.1109/BCCA50787.2020.9274449
dc.identifier.wos000848747500004
dc.language.isoengen_US
dc.publicationstatusPublisheden_US
dc.publisherIEEEen_US
dc.relation.ispartof2020 Second International Conference on Blockchain Computing and Applications (BCCA)
dc.relation.publicationcategoryInternational
dc.rightsrestrictedAccess
dc.subject.keywordsBlockchain (BC)en_US
dc.subject.keywordsNetwork securityen_US
dc.subject.keywordsSoftware-defined networking (SDN)en_US
dc.titleDPSec: A blockchain-based data plane authentication protocol for SDNsen_US
dc.typeconferenceObjecten_US
dspace.entity.typePublication
relation.isOrgUnitOfPublication85662e71-2a61-492a-b407-df4d38ab90d7
relation.isOrgUnitOfPublication.latestForDiscovery85662e71-2a61-492a-b407-df4d38ab90d7

Files

License bundle

Now showing 1 - 1 of 1
Placeholder
Name:
license.txt
Size:
1.45 KB
Format:
Item-specific license agreed upon to submission
Description:

Collections