| Publication type: | Article in scientific journal |
| Type of review: | Peer review (publication) |
| Title: | Network fingerprinting via timing attacks and defense in software defined networks |
| Authors: | Yiğit, Beytüllah Gür, Gürkan Alagöz, Fatih Tellenbach, Bernhard |
| et. al: | No |
| DOI: | 10.1016/j.comnet.2023.109850 |
| Published in: | Computer Networks |
| Volume(Issue): | 232 |
| Issue: | 109850 |
| Issue Date: | 2023 |
| Publisher / Ed. Institution: | Elsevier |
| ISSN: | 1389-1286 |
| Language: | English |
| Subjects: | Software-Defined Networking (SDN); SDN security; Fingerprinting; Reconnaissance; OpenFlow |
| Subject (DDC): | 004: Computer science |
| Abstract: | Software-Defined Networking (SDN) is becoming a native networking model for next-generation networks. However, with its decoupled architecture, SDN is susceptible to reconnaissance through time inference attacks. Attackers can use probing-based measurements and gather information such as network type and flow table size. In this paper, an automated attacker tool called RAFA is proposed to infer network type (SDN or traditional) and flow rule timeout values (hard and idle). Moreover, a lightweight defense mechanism to randomize rule timeouts with respect to network status is described. A comprehensive simulation setup with different network conditions shows that the proposed methods achieve a superior success rate in diverse settings. |
| URI: | https://digitalcollection.zhaw.ch/handle/11475/28130 |
| Fulltext version: | Published version |
| License (according to publishing contract): | Licence according to publishing contract |
| Departement: | School of Engineering |
| Organisational Unit: | Institute of Computer Science (InIT) |
| Appears in collections: | Publikationen School of Engineering |
Files in This Item:
There are no files associated with this item.
Show full item record
Yiğit, B., Gür, G., Alagöz, F., & Tellenbach, B. (2023). Network fingerprinting via timing attacks and defense in software defined networks. Computer Networks, 232(109850). https://doi.org/10.1016/j.comnet.2023.109850
Yiğit, B. et al. (2023) ‘Network fingerprinting via timing attacks and defense in software defined networks’, Computer Networks, 232(109850). Available at: https://doi.org/10.1016/j.comnet.2023.109850.
B. Yiğit, G. Gür, F. Alagöz, and B. Tellenbach, “Network fingerprinting via timing attacks and defense in software defined networks,” Computer Networks, vol. 232, no. 109850, 2023, doi: 10.1016/j.comnet.2023.109850.
YIĞIT, Beytüllah, Gürkan GÜR, Fatih ALAGÖZ und Bernhard TELLENBACH, 2023. Network fingerprinting via timing attacks and defense in software defined networks. Computer Networks. 2023. Bd. 232, Nr. 109850. DOI 10.1016/j.comnet.2023.109850
Yiğit, Beytüllah, Gürkan Gür, Fatih Alagöz, and Bernhard Tellenbach. 2023. “Network Fingerprinting via Timing Attacks and Defense in Software Defined Networks.” Computer Networks 232 (109850). https://doi.org/10.1016/j.comnet.2023.109850.
Yiğit, Beytüllah, et al. “Network Fingerprinting via Timing Attacks and Defense in Software Defined Networks.” Computer Networks, vol. 232, no. 109850, 2023, https://doi.org/10.1016/j.comnet.2023.109850.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.