Publication: DPSec: A blockchain-based data plane authentication protocol for SDNs
| dc.contributor.author | Latah, Majd | |
| dc.contributor.author | Çakmakçı, Kübra Kalkan | |
| dc.contributor.department | Computer Science | |
| dc.contributor.editor | Alsmirat, M. | |
| dc.contributor.editor | Jararweh, Y. | |
| dc.contributor.editor | Aloqaily, M. | |
| dc.contributor.editor | Ozkasap, O. | |
| dc.contributor.ozuauthor | ÇAKMAKCİ, Kübra Kalkan | |
| dc.contributor.ozugradstudent | Latah, Majd | |
| dc.date.accessioned | 2021-03-10T13:03:48Z | |
| dc.date.available | 2021-03-10T13:03:48Z | |
| dc.date.issued | 2020-11-02 | |
| dc.description.abstract | Software-Defined Networking (SDN) is a promising networking architecture that enables central management along with network programmability. However, SDN brings additional security threats due to untrusted control and data planes. In this work, we focus on authenticating SDN's data plane since it can be exploited to attack SDN's control plane. As a result, the whole SDN network will be paralysed. On the other hand, Blockchain (BC) can be utilized to provide more secure data plane by introducing a fault-tolerant, decentralized and secure ledger without relying on any trusted third-party intermediaries. To this end, in this work we propose, DPSec, a consortium BC-based protocol for authenticating SDN's data plane including SDN switches and hosts. We also provide a proof-of-concept that demonstrates the applicability and feasibility of our protocol in SDNs. Finally, we present a security analysis that shows how DPSec can address several attacks against SDNs including CVE-2018-1000155 vulnerability [1] that targets SDN controllers due to the untrusted data plane. | en_US |
| dc.identifier.doi | 10.1109/BCCA50787.2020.9274449 | en_US |
| dc.identifier.endpage | 29 | en_US |
| dc.identifier.scopus | 2-s2.0-85098702142 | |
| dc.identifier.startpage | 22 | en_US |
| dc.identifier.uri | http://hdl.handle.net/10679/7378 | |
| dc.identifier.uri | https://doi.org/10.1109/BCCA50787.2020.9274449 | |
| dc.identifier.wos | 000848747500004 | |
| dc.language.iso | eng | en_US |
| dc.publicationstatus | Published | en_US |
| dc.publisher | IEEE | en_US |
| dc.relation.ispartof | 2020 Second International Conference on Blockchain Computing and Applications (BCCA) | |
| dc.relation.publicationcategory | International | |
| dc.rights | info:eu-repo/semantics/restrictedAccess | |
| dc.subject.keywords | Blockchain (BC) | en_US |
| dc.subject.keywords | Network security | en_US |
| dc.subject.keywords | Software-defined networking (SDN) | en_US |
| dc.title | DPSec: A blockchain-based data plane authentication protocol for SDNs | en_US |
| dc.type | Conference paper | en_US |
| dspace.entity.type | Publication | |
| relation.isOrgUnitOfPublication | 85662e71-2a61-492a-b407-df4d38ab90d7 | |
| relation.isOrgUnitOfPublication.latestForDiscovery | 85662e71-2a61-492a-b407-df4d38ab90d7 |
Files
License bundle
1 - 1 of 1
- Name:
- license.txt
- Size:
- 1.45 KB
- Format:
- Item-specific license agreed upon to submission
- Description: