BQSV: Protecting SDN controller cluster’s network topology view based on byzantine quorum system with verification function
- Publisher:
- Springer International Publishing
- Publication Type:
- Conference Proceeding
- Citation:
- Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 2019, 11982 LNCS, pp. 73-88
- Issue Date:
- 2019-01-01
Closed Access
| Filename | Description | Size | |||
|---|---|---|---|---|---|
| Zhi2019_Chapter_BQSVProtectingSDNControllerClu.pdf | Published version | 957.78 kB |
Copyright Clearance Process
- Recently Added
- In Progress
- Closed Access
This item is closed access and not available.
© 2019, Springer Nature Switzerland AG. In Software-defined network (SDN), SDN applications and administrators rely on the logically centralized view of the network topology to make management decisions. Therefore, the correctness of SDN controller cluster’s network topology view becomes critical. However, the lack of security mechanism in SDN controller cluster makes the network topology view easy to be tampered with. In this paper, we argue that malicious controllers in a cluster can easily damage the network view of the cluster through the east-west bound interfaces. We present a scheme based on Byzantine Quorum System with verification function (BQSV) to prevent malicious controllers from manipulating the cluster’s network view through east-west bound interface and providing wrong topology information to SDN applications and administrators. Moreover, we implement the prototype of our scheme and extensive experiments to show that the proposed scheme can prevent malicious controllers from damaging the topology information of the cluster with trivial overheads.
Please use this identifier to cite or link to this item: