Publikationstyp: | Beitrag in wissenschaftlicher Zeitschrift |
Art der Begutachtung: | Peer review (Publikation) |
Titel: | Network fingerprinting via timing attacks and defense in software defined networks |
Autor/-in: | Yiğit, Beytüllah Gür, Gürkan Alagöz, Fatih Tellenbach, Bernhard |
et. al: | No |
DOI: | 10.1016/j.comnet.2023.109850 |
Erschienen in: | Computer Networks |
Band(Heft): | 232 |
Heft: | 109850 |
Erscheinungsdatum: | 2023 |
Verlag / Hrsg. Institution: | Elsevier |
ISSN: | 1389-1286 |
Sprache: | Englisch |
Schlagwörter: | Software-Defined Networking (SDN); SDN security; Fingerprinting; Reconnaissance; OpenFlow |
Fachgebiet (DDC): | 004: Informatik |
Zusammenfassung: | Software-Defined Networking (SDN) is becoming a native networking model for next-generation networks. However, with its decoupled architecture, SDN is susceptible to reconnaissance through time inference attacks. Attackers can use probing-based measurements and gather information such as network type and flow table size. In this paper, an automated attacker tool called RAFA is proposed to infer network type (SDN or traditional) and flow rule timeout values (hard and idle). Moreover, a lightweight defense mechanism to randomize rule timeouts with respect to network status is described. A comprehensive simulation setup with different network conditions shows that the proposed methods achieve a superior success rate in diverse settings. |
URI: | https://digitalcollection.zhaw.ch/handle/11475/28130 |
Volltext Version: | Publizierte Version |
Lizenz (gemäss Verlagsvertrag): | Lizenz gemäss Verlagsvertrag |
Departement: | School of Engineering |
Organisationseinheit: | Institut für Informatik (InIT) |
Enthalten in den Sammlungen: | Publikationen School of Engineering |
Dateien zu dieser Ressource:
Es gibt keine Dateien zu dieser Ressource.
Zur Langanzeige
Yiğit, B., Gür, G., Alagöz, F., & Tellenbach, B. (2023). Network fingerprinting via timing attacks and defense in software defined networks. Computer Networks, 232(109850). https://doi.org/10.1016/j.comnet.2023.109850
Yiğit, B. et al. (2023) ‘Network fingerprinting via timing attacks and defense in software defined networks’, Computer Networks, 232(109850). Available at: https://doi.org/10.1016/j.comnet.2023.109850.
B. Yiğit, G. Gür, F. Alagöz, and B. Tellenbach, “Network fingerprinting via timing attacks and defense in software defined networks,” Computer Networks, vol. 232, no. 109850, 2023, doi: 10.1016/j.comnet.2023.109850.
YIĞIT, Beytüllah, Gürkan GÜR, Fatih ALAGÖZ und Bernhard TELLENBACH, 2023. Network fingerprinting via timing attacks and defense in software defined networks. Computer Networks. 2023. Bd. 232, Nr. 109850. DOI 10.1016/j.comnet.2023.109850
Yiğit, Beytüllah, Gürkan Gür, Fatih Alagöz, and Bernhard Tellenbach. 2023. “Network Fingerprinting via Timing Attacks and Defense in Software Defined Networks.” Computer Networks 232 (109850). https://doi.org/10.1016/j.comnet.2023.109850.
Yiğit, Beytüllah, et al. “Network Fingerprinting via Timing Attacks and Defense in Software Defined Networks.” Computer Networks, vol. 232, no. 109850, 2023, https://doi.org/10.1016/j.comnet.2023.109850.
Alle Ressourcen in diesem Repository sind urheberrechtlich geschützt, soweit nicht anderweitig angezeigt.