한국정보처리학회:학술대회논문집 (Proceedings of the Korea Information Processing Society Conference)
- 한국정보처리학회 2014년도 추계학술발표대회
- /
- Pages.215-217
- /
- 2014
- /
- 2005-0011(pISSN)
- /
- 2671-7298(eISSN)
DOI QR Code
SDN 플로우 테이블 제한에 따른 리소스 어택
Resource Attack Based On Flow Table Limitation in SDN
- 뉴엔 트리 투안 힙 (전남대학교 전자컴퓨터공학부) ;
- 김경백 (전남대학교 전자컴퓨터공학부)
- Tri, Hiep T. Nguyen (Department of Electronics and Computer Engineering Chonnam National University) ;
- Kim, Kyungbaek (Department of Electronics and Computer Engineering Chonnam National University)
- 발행 : 2014.11.05
초록
In Software Defined Network (SDN), data plane and control plane are decoupled. Dummy switches on the data plane simply forward packet based on the flow entries that are stored in its flow table. The flow entries are generated by a centralized controller that acts as a brain of the network. However, the size of flow table is limited and it can conduct a security issue related to Distributed Denial of Service (DDoS). Especially, it related to resource attack that consumes all flow table resource and consumes controller resources. In this paper, we will analyze the impact of flow table limitation to the controller. Then we propose an approach that is called Flow Table Management to handle flow table limitation.
키워드