Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

OrchSec Demo: Demonstrating the Capability of an Orchtestrator-based Architecture for Network Security

Presentation held at Open Networking Summit 2014
: Zaalouk, Adel; Khondoker, Rahamatullah; Marx, Ronald; Bayarou, Kpatcha

Fulltext urn:nbn:de:0011-n-2777751 (707 KByte PDF)
MD5 Fingerprint: 68096a3c1f753234f8e0a25eb535ca16
Created on: 19.2.2014

2014, 2 pp.
Open Networking Summit <2014, Santa Clara/Calif.>
Presentation, Electronic Publication
Fraunhofer SIT ()
Software-Defined Networking (SDN); orchestrator; security; SDN app; ARP spoofing; cache poisoning; DoS; DDoS; DNS amplification attacks; port scanning

Software Defined Networking (SDN) provides features such as control and data plane decoupling, network visibility, and automation. These features promote SDN as a candidate for enhancing network security. However, the research done related to using SDN for network security reflects some limitations such as tightly-coupled application development, usage of a single SDN controller, no decoupling of networking monitoring and control functions. To address these limitations, OrchSec, an architecture for utilizing network monitoring and SDN control functions to enhance network security was proposed. In this demonstration, we aim to show how the applications developed on-top of the OrchSec architecture can be used for detecting and mitigating attacks such as ARP spoofing / cache pois oning, Denial of Service (DoS), and Distributed Denial of Service (DDoS), Domain Name System (DNS) amplification attacks, and Port Scanning behavior.