Software defined networking (SDN) has been adopted in many application domains as it provides functionalities to dynamically\ncontrol the network flow more robust and more economical compared to the traditional networks. In order to\nstrengthen the security of the SDN against cyber attacks, many security solutions have been proposed. However, those\nsolutions need to be compared in order to optimize the security of the SDN. To assess and evaluate the security of the SDN\nsystematically, one can use graphical security models (e.g., attack graphs and attack trees). However, it is difficult to provide\ndefense against an attack in real time due to their high computational complexity. In this paper, we propose a real-time\nintrusion response in SDN using precomputation to estimate the likelihood of future attack paths from an ongoing attack. We\nalso take into account various SDN components to conduct a security assessment, which were not available when addressing\nonly the components of an existing network. Our experimental analysis shows that we are able to estimate possible attack paths\nof an ongoing attack to mitigate it in real time, as well as showing the security metrics that depend on the flow table, including\nthe SDN component. Hence, the proposed approach can be used to provide effective real-time mitigation solutions for\nsecuring SDN.
Loading....