SOFTWARE DEFINED NETWORK (SDN) PARADIGM??

1: INTRODUCTION:
a. CONTEXT:

Network protocols and devices have evolved to handle a plethora of new technologies as smartphone technology

and Internet applications have grown more widespread. “Mastering complexity” is the term used by many in the field of computer networks to describe this process. Several options have been proposed. Many varieties of electronic devices have been commercialized. Many issues with administration, security, debugging, and compatibility arose as a result of this degree of complexity. Recent advances in technology have made it possible to develop novel approaches to solving these issues. Nonetheless, complexity has increased. Software-defined networking (SDN) is a novel network design with the goal of simplifying both network technology and network administration. According to this theory, a network controller is an entirely novel component of a network. This mastermind of a controller runs and programs the network. Different from configuring network hardware is network programming. The process of configuring a network involves engineers making adjustments to the settings of network devices in accordance with a set of established instructions. However, network programmability is the process by which a network expert creates software to control various packet forwarding devices that may be programmed using certain protocols like OpenFlow.

The controller may, for instance, let layer-2 network switches to impersonate any other kind of network hardware. This technology has the potential to simplify the handling of network management and protocol problems. Address resolution protocol (ARP) poisoning is only one of several security concerns that may be fixed. When a hacker poses as a network gateway, they are launching an ARP poisoning attack, also known as ARP spoofing. In other words, the break-in converted into a permanent passage across the network. This approach is well-liked since it is simple to grasp. When combined with additional assaults, such as MiM attacks, eavesdropping, MAC flooding, and denial of service, ARP spoofing becomes a very dangerous threat to any network (DoS).

In order to mitigate ARP poisoning, this research will use the SDN paradigm. We will show you a new method to accomplish things that employs an SDN controller. The proposed solution might do rid of ARP poisoning on local area networks without modifying or upgrading the present ARP protocol (LANs). Whether or not ARP replies are broadcast is at the controller’s discretion. This is a new approach to utilize the new technique.

b. PROBLEM

“Mastering complexity” is the term used by many in the field of computer networks to describe this process. Several options have been proposed. Many varieties of electronic devices have been commercialized. Many issues with administration, security, debugging, and compatibility arose as a result of this degree of complexity. New protocols and technologies have been developed to address these issues.

c. OBJECTIVES:

The purpose of this research was to see whether SDN might be utilized to prevent or mitigate the impacts of ARP poisoning assaults. This tactic is the foundation for several network assaults, including “man-in-the-middle,” “denial-of-service,” and “session hijacking.” The goal of this project is to develop a novel approach to countering ARP spoofing.

2- Methodology

Construct a testbed to evaluate the effectiveness of the proposed algorithm. The experimental set-up is shown in Figure 1. The proposed technique was built using the Python programming language. That’s one more argument in favor of using the Ryu SDN controller. For a second, Ryu’s controller stands out from the crowd because it’s packed with information that other players won’t have access to.

Figure 1: Experimental setting.

The testbed consists of four personal computers, an SDN-capable HP-2920-24G switch, and an access point functioning as a DCHP server in an SDN dynamic network environment. All the workstations are equipped with 1.8 GHz i5 core processors, 4 GB of RAM, and network interface controllers. One of these computers has the Ryu controller installed, as well as Ubuntu. This was a controller computer wired into the switch’s management jack. The secondary and tertiary machines also run Windows 7. We install Kali Linux on the fourth machine. Those three machines are now connected to the network as clients.

The experiment consisted of three components that corresponded to the three different modes of operation of the switch: the traditional switch, the SDN switch, and the SDN switch that implemented the proposed technique. The switch functions normally when the controller is not engaged. The goal of this experiment is to demonstrate the ease and severity of an ARP poisoning attack by only switching to regular mode.

3- ANALYSIS:

Evaluation was performed using a Ryu-controlled SDN-enabled physical switch. The novel technique has been shown to prevent ARP spoofing and other assaults in laboratory settings.

4- CONCLUSION

Software-defined networking (SDN) represents a paradigm shift in the way we consider and design networked computers. The system employs a controller, a novel component capable of monitoring the whole network. This controller also allows for the configuration of the network devices it manages. To combat the “ARP poisoning” attack against LAN ARP caches, an SDN technique was used in this research. An entirely new strategy was developed and implemented in response to this assault. The effectiveness of the proposed strategy was evaluated by testing. Since the Ryu controller is free and available to the public, and the HP2920-24 switch is compatible with software-defined networking, we were able to do our experiment. Our research shows that the revised algorithm successfully prevented several ARP poisoning-based attacks and security breaches.

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top