Assessing SDN Controller Vulnerabilities: A Survey on Attack Typologies, Detection Mechanisms, Controller Selection, and Dataset Application in Machine Learning: Assessing SDN Controller Vulnerabilities...: J. Arevalo-Herrera et al.
Saved in:
| Title: | Assessing SDN Controller Vulnerabilities: A Survey on Attack Typologies, Detection Mechanisms, Controller Selection, and Dataset Application in Machine Learning: Assessing SDN Controller Vulnerabilities...: J. Arevalo-Herrera et al. |
|---|---|
| Authors: | Arevalo-Herrera, Juliana1,2 (AUTHOR) j.arevaloh.2019@alumnos.urjc.es, Camargo Mendoza, Jorge3 (AUTHOR) jecamargom@unal.edu.co, Martínez Torre, Jose Ignacio1 (AUTHOR) joseignacio.martinez@urjc.es, Zona-Ortiz, Tatiana2 (AUTHOR) angelazona@usta.edu.co, Ramirez, Juan M.4 (AUTHOR) juan.ramirez@imdea.org |
| Source: | Wireless Personal Communications. Jan2025, Vol. 140 Issue 1, p739-775. 37p. |
| Subjects: | OpenFlow (Computer network protocol), Statistical learning, Artificial intelligence, Machine learning, Mathematical statistics |
| Abstract: | SDN controllers become the main advantage of the architecture because they present a centralized control decision-making and general view of the network. They are, however, also a critical point that an attacker could exploit. More review of the body of research is needed regarding the types of attacks on SDN controllers, methods to detect them, and mitigation techniques directed specifically to the controller, particularly considering the approach of machine learning detection methods. This survey addresses the topics of attacks targeting the SDN controller, methods for their detection, what types of controllers are used in different studies, and datasets used in machine learning detection methods. The findings highlight that most attacks exploit vulnerabilities inherent in the OpenFlow protocol, while the detection methodologies remain primarily statistical and machine learning approaches. Additionally, the review shows that while outdated controllers like Floodlight and Ryu are still widely used in studies, actively supported controllers such as ONOS and ODL are used much less. Finally, the survey finds only two publicly available datasets tailored for SDN environments, none considering attacks directed at the controllers, illustrating a notable gap in the existing research. This survey also highlights the need for further research focusing on modern SDN controllers and developing comprehensive datasets to advance effective security solutions. [ABSTRACT FROM AUTHOR] |
| Copyright of Wireless Personal Communications is the property of Springer Nature and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.) | |
| Database: | Engineering Source |
|
Full text is not displayed to guests.
Login for full access.
|
|
| Abstract: | SDN controllers become the main advantage of the architecture because they present a centralized control decision-making and general view of the network. They are, however, also a critical point that an attacker could exploit. More review of the body of research is needed regarding the types of attacks on SDN controllers, methods to detect them, and mitigation techniques directed specifically to the controller, particularly considering the approach of machine learning detection methods. This survey addresses the topics of attacks targeting the SDN controller, methods for their detection, what types of controllers are used in different studies, and datasets used in machine learning detection methods. The findings highlight that most attacks exploit vulnerabilities inherent in the OpenFlow protocol, while the detection methodologies remain primarily statistical and machine learning approaches. Additionally, the review shows that while outdated controllers like Floodlight and Ryu are still widely used in studies, actively supported controllers such as ONOS and ODL are used much less. Finally, the survey finds only two publicly available datasets tailored for SDN environments, none considering attacks directed at the controllers, illustrating a notable gap in the existing research. This survey also highlights the need for further research focusing on modern SDN controllers and developing comprehensive datasets to advance effective security solutions. [ABSTRACT FROM AUTHOR] |
|---|---|
| ISSN: | 09296212 |
| DOI: | 10.1007/s11277-025-11748-w |