SYNChecker: A Scalable and Reliable TCP Connection Management for Defending SYN Flooding in SDN
- Title
- SYNChecker: A Scalable and Reliable TCP Connection Management for Defending SYN Flooding in SDN
- Authors
- Liu, Xinyu
- Date Issued
- 2016
- Publisher
- 포항공과대학교
- Abstract
- Software Defined Networking (SDN) is a novel programmable networking paradigm that decouples control plane and data plane. SDN highly relies on the controller in control plane that commands data plane how to handle new packets. Because the whole network may be disrupted if the controller is disabled, many attacks including SYN flooding aim to overload the controller passing through ingress switches. The thesis proposes an enhanced OpenFlow Switch called SYNChecker to protect the controller from SYN flooding. The switch authenticates benign hosts by interchanging cookie packets and generates a short-lived security association (SA). The retransmitted SYN packet from benign hosts is validated using SA and passed on to the controller. Our evaluation shows that SYNChecker protects the controller from the SYN flooding with acceptable time cost.
- URI
- http://postech.dcollection.net/jsp/common/DcLoOrgPer.jsp?sItemId=000002296383
https://oasis.postech.ac.kr/handle/2014.oak/93523
- Article Type
- Thesis
- Files in This Item:
- There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.