Securing Southbound Interface in SDNs: Utilizing Support Vector Machines for OpenFlow Packet Classification

Ali Gokhan Avran; Elif Ak; Kubra Duran; Gokhan Yurdakul; Gokhan Secinti

doi:10.1109/CAMAD59638.2023.10478400

Securing Southbound Interface in SDNs: Utilizing Support Vector Machines for OpenFlow Packet Classification

Ali Gokhan Avran^*, Elif Ak, Kubra Duran, Gokhan Yurdakul, Gokhan Secinti

^*Bu çalışma için yazışmadan sorumlu yazar

Bilgisayar Mühendisliği Bölümü

Araştırma sonucu: Kitap/Rapor/Konferans Bildirisinde Bölüm › Konferans katkısı › bilirkişi

2 Atıf (Scopus)

Özet

The southbound interface enables communication and interaction between the Software-Defined Networking (SDN) controller and the underlying network infrastructure, including switches, routers, and other network devices, requesting network resources and manipulating the network's behavior. Nevertheless, it introduces certain risks that must be addressed to ensure the effective deployment and operation of SDN systems. This paper introduces an OpenFlow Packet Classification Framework for southbound communication in SDN using a Support Vector Machine (SVM) that addresses possible security risks associated with OpenFlow communication in SDN environments. The proposed framework empowers the SVM model to capture complex patterns and boundaries within Southbound communication data using our novel adjusted-weight level approach. Our empirical analysis demonstrates that this framework yields superior results in classifying Southbound SDN packets by incorporating level adjustments to OpenFlow parameters. The introduced solution demonstrated its effectiveness with remarkable accuracy, achieving a detection rate of 0.985 as measured by the classification model's score, coupled with a notably low occurrence of false alarms. The examined OpenFlow Packet Classification Framework also offers a promising platform for future studies implementing advanced security mechanisms, thereby mitigating security risks prevalent in SDN environments.

Orijinal dil	İngilizce
Ana bilgisayar yayını başlığı	2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023
Yayınlayan	Institute of Electrical and Electronics Engineers Inc.
Sayfalar	258-263
Sayfa sayısı	6
ISBN (Elektronik)	9798350303490
DOI'lar	https://doi.org/10.1109/CAMAD59638.2023.10478400
Yayın durumu	Yayınlandı - 2023
Etkinlik	2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023 - Edinburgh, United Kingdom Süre: 6 Kas 2023 → 8 Kas 2023

Yayın serisi

Adı	IEEE International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD
ISSN (Elektronik)	2378-4873

???event.eventtypes.event.conference???

???event.eventtypes.event.conference???	2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023
Ülke/Bölge	United Kingdom
Şehir	Edinburgh
Periyot	6/11/23 → 8/11/23

Bibliyografik not

Publisher Copyright:
© 2023 IEEE.

Belgeye Erişim

10.1109/CAMAD59638.2023.10478400

Diğer Dosyalar ve Linkler

Link to publication in Scopus

Alıntı Yap

Avran, A. G., Ak, E., Duran, K., Yurdakul, G., & Secinti, G. (2023). Securing Southbound Interface in SDNs: Utilizing Support Vector Machines for OpenFlow Packet Classification. In 2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023 (pp. 258-263). (IEEE International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CAMAD59638.2023.10478400

Avran, Ali Gokhan ; Ak, Elif ; Duran, Kubra et al. / Securing Southbound Interface in SDNs : Utilizing Support Vector Machines for OpenFlow Packet Classification. 2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023. Institute of Electrical and Electronics Engineers Inc., 2023. pp. 258-263 (IEEE International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD).

@inproceedings{6dd734d041b446d0afa3dd5371df3791,

title = "Securing Southbound Interface in SDNs: Utilizing Support Vector Machines for OpenFlow Packet Classification",

abstract = "The southbound interface enables communication and interaction between the Software-Defined Networking (SDN) controller and the underlying network infrastructure, including switches, routers, and other network devices, requesting network resources and manipulating the network's behavior. Nevertheless, it introduces certain risks that must be addressed to ensure the effective deployment and operation of SDN systems. This paper introduces an OpenFlow Packet Classification Framework for southbound communication in SDN using a Support Vector Machine (SVM) that addresses possible security risks associated with OpenFlow communication in SDN environments. The proposed framework empowers the SVM model to capture complex patterns and boundaries within Southbound communication data using our novel adjusted-weight level approach. Our empirical analysis demonstrates that this framework yields superior results in classifying Southbound SDN packets by incorporating level adjustments to OpenFlow parameters. The introduced solution demonstrated its effectiveness with remarkable accuracy, achieving a detection rate of 0.985 as measured by the classification model's score, coupled with a notably low occurrence of false alarms. The examined OpenFlow Packet Classification Framework also offers a promising platform for future studies implementing advanced security mechanisms, thereby mitigating security risks prevalent in SDN environments.",

keywords = "OpenFlow, Packet Classification, SDN, SVM, Southbound Communication",

author = "Avran, {Ali Gokhan} and Elif Ak and Kubra Duran and Gokhan Yurdakul and Gokhan Secinti",

note = "Publisher Copyright: {\textcopyright} 2023 IEEE.; 2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023 ; Conference date: 06-11-2023 Through 08-11-2023",

year = "2023",

doi = "10.1109/CAMAD59638.2023.10478400",

language = "English",

series = "IEEE International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "258--263",

booktitle = "2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023",

address = "United States",

}

Avran, AG, Ak, E, Duran, K, Yurdakul, G & Secinti, G 2023, Securing Southbound Interface in SDNs: Utilizing Support Vector Machines for OpenFlow Packet Classification. in 2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023. IEEE International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD, Institute of Electrical and Electronics Engineers Inc., pp. 258-263, 2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023, Edinburgh, United Kingdom, 6/11/23. https://doi.org/10.1109/CAMAD59638.2023.10478400

Securing Southbound Interface in SDNs: Utilizing Support Vector Machines for OpenFlow Packet Classification. / Avran, Ali Gokhan; Ak, Elif; Duran, Kubra et al.
2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023. Institute of Electrical and Electronics Engineers Inc., 2023. p. 258-263 (IEEE International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD).

Araştırma sonucu: Kitap/Rapor/Konferans Bildirisinde Bölüm › Konferans katkısı › bilirkişi

TY - GEN

T1 - Securing Southbound Interface in SDNs

T2 - 2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023

AU - Avran, Ali Gokhan

AU - Ak, Elif

AU - Duran, Kubra

AU - Yurdakul, Gokhan

AU - Secinti, Gokhan

PY - 2023

Y1 - 2023

N2 - The southbound interface enables communication and interaction between the Software-Defined Networking (SDN) controller and the underlying network infrastructure, including switches, routers, and other network devices, requesting network resources and manipulating the network's behavior. Nevertheless, it introduces certain risks that must be addressed to ensure the effective deployment and operation of SDN systems. This paper introduces an OpenFlow Packet Classification Framework for southbound communication in SDN using a Support Vector Machine (SVM) that addresses possible security risks associated with OpenFlow communication in SDN environments. The proposed framework empowers the SVM model to capture complex patterns and boundaries within Southbound communication data using our novel adjusted-weight level approach. Our empirical analysis demonstrates that this framework yields superior results in classifying Southbound SDN packets by incorporating level adjustments to OpenFlow parameters. The introduced solution demonstrated its effectiveness with remarkable accuracy, achieving a detection rate of 0.985 as measured by the classification model's score, coupled with a notably low occurrence of false alarms. The examined OpenFlow Packet Classification Framework also offers a promising platform for future studies implementing advanced security mechanisms, thereby mitigating security risks prevalent in SDN environments.

AB - The southbound interface enables communication and interaction between the Software-Defined Networking (SDN) controller and the underlying network infrastructure, including switches, routers, and other network devices, requesting network resources and manipulating the network's behavior. Nevertheless, it introduces certain risks that must be addressed to ensure the effective deployment and operation of SDN systems. This paper introduces an OpenFlow Packet Classification Framework for southbound communication in SDN using a Support Vector Machine (SVM) that addresses possible security risks associated with OpenFlow communication in SDN environments. The proposed framework empowers the SVM model to capture complex patterns and boundaries within Southbound communication data using our novel adjusted-weight level approach. Our empirical analysis demonstrates that this framework yields superior results in classifying Southbound SDN packets by incorporating level adjustments to OpenFlow parameters. The introduced solution demonstrated its effectiveness with remarkable accuracy, achieving a detection rate of 0.985 as measured by the classification model's score, coupled with a notably low occurrence of false alarms. The examined OpenFlow Packet Classification Framework also offers a promising platform for future studies implementing advanced security mechanisms, thereby mitigating security risks prevalent in SDN environments.

KW - OpenFlow

KW - Packet Classification

KW - SDN

KW - SVM

KW - Southbound Communication

UR - http://www.scopus.com/inward/record.url?scp=85190533947&partnerID=8YFLogxK

U2 - 10.1109/CAMAD59638.2023.10478400

DO - 10.1109/CAMAD59638.2023.10478400

M3 - Conference contribution

AN - SCOPUS:85190533947

T3 - IEEE International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD

SP - 258

EP - 263

BT - 2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 6 November 2023 through 8 November 2023

ER -

Avran AG, Ak E, Duran K, Yurdakul G, Secinti G. Securing Southbound Interface in SDNs: Utilizing Support Vector Machines for OpenFlow Packet Classification. In 2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD 2023. Institute of Electrical and Electronics Engineers Inc. 2023. p. 258-263. (IEEE International Workshop on Computer Aided Modeling and Design of Communication Links and Networks, CAMAD). doi: 10.1109/CAMAD59638.2023.10478400

Securing Southbound Interface in SDNs: Utilizing Support Vector Machines for OpenFlow Packet Classification

Özet

Yayın serisi

???event.eventtypes.event.conference???

Bibliyografik not

Belgeye Erişim

Diğer Dosyalar ve Linkler

Parmak izi

Alıntı Yap