Securing Southbound Interface in SDNs: Utilizing Support Vector Machines for OpenFlow Packet Classification

Ali Gokhan Avran*, Elif Ak, Kubra Duran, Gokhan Yurdakul, Gokhan Secinti

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

The southbound interface enables communication and interaction between the Software-Defined Networking (SDN) controller and the underlying network infrastructure, including switches, routers, and other network devices, requesting network resources and manipulating the network's behavior. Nevertheless, it introduces certain risks that must be addressed to ensure the effective deployment and operation of SDN systems. This paper introduces an OpenFlow Packet Classification Framework for southbound communication in SDN using a Support Vector Machine (SVM) that addresses possible security risks associated with OpenFlow communication in SDN environments. The proposed framework empowers the SVM model to capture complex patterns and boundaries within Southbound communication data using our novel adjusted-weight level approach. Our empirical analysis demonstrates that this framework yields superior results in classifying Southbound SDN packets by incorporating level adjustments to OpenFlow parameters. The introduced solution demonstrated its effectiveness with remarkable accuracy, achieving a detection rate of 0.985 as measured by the classification model's score, coupled with a notably low occurrence of false alarms. The examined OpenFlow Packet Classification Framework also offers a promising platform for future studies implementing advanced security mechanisms, thereby mitigating security risks prevalent in SDN environments.

Original languageEnglish
Title of host publication2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages258-263
Number of pages6
ISBN (Electronic)9798350303490
DOIs
Publication statusPublished - 2023
Event2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023 - Edinburgh, United Kingdom
Duration: 6 Nov 20238 Nov 2023

Publication series

NameIEEE International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD
ISSN (Electronic)2378-4873

Conference

Conference2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023
Country/TerritoryUnited Kingdom
CityEdinburgh
Period6/11/238/11/23

Bibliographical note

Publisher Copyright:
© 2023 IEEE.

Keywords

  • OpenFlow
  • Packet Classification
  • SDN
  • Southbound Communication
  • SVM

Fingerprint

Dive into the research topics of 'Securing Southbound Interface in SDNs: Utilizing Support Vector Machines for OpenFlow Packet Classification'. Together they form a unique fingerprint.

Cite this