A Survey on Intrusion Detection System for Software Defined Networks (SDN)

A Survey on Intrusion Detection System for Software Defined Networks (SDN)

Yogita Hande, Akkalashmi Muddana
Copyright: © 2021 |Pages: 23
DOI: 10.4018/978-1-7998-7705-9.ch023
OnDemand:
(Individual Chapters)
Available
$37.50
Current Special Offers
No Current Special Offers
TOTAL SAVINGS: $37.50

Abstract

Presently, the advances of the internet towards a wide-spread growth and the static nature of traditional networks has limited capacity to cope with organizational business needs. The new network architecture software defined networking (SDN) appeared to address these challenges and provides distinctive features. However, these programmable and centralized approaches of SDN face new security challenges which demand innovative security mechanisms like intrusion detection systems (IDS's). The IDS of SDN are designed currently with a machine learning approach; however, a deep learning approach is also being explored to achieve better efficiency and accuracy. In this article, an overview of the SDN with its security concern and IDS as a security solution is explained. A survey of existing security solutions designed to secure the SDN, and a comparative study of various IDS approaches based on a deep learning model and machine learning methods are discussed in the article. Finally, we describe future directions for SDN security.
Chapter Preview
Top

2. Software Defined Networking

The network is comprised of a number of devices which are connected to share the information from one place to another. One good example of a network is the internet. The Internet-based, business organizations and industries need to change their network configurations dynamically according to their business requirements. To achieve these changes over the traditional network is the one biggest challenge. The complex traditional network creates a barrier for data centers to innovate new services, interconnect different data centers, interconnection with enterprises, etc. A new approach needs to be looked at to overcome these issues. This is where software defined network (SDN) comes to manage and configure the network as per industry business needs from a central location through programming.

In a traditional network, the main components of a device are data, management, and control plane. However, the control plane is responsible for routing, i.e. to identify the path to transfer the data towards the destination using routing algorithms. The data plane may also be referred as the forwarding plane, as it is accountable to send the network traffic to the next node along the path selected by the control plane for the respective destination. The management plane helps to manage both the control and the data plane. However, in such traditional network, the data and the control plane is combined in a single physical device (router). The control plane will be effectively separated from data plane in the SDN network (Kreutz et al., 2015) and acts as a centralized software controller. Therefore, the controller provides programming functionality that allows a supervisor to organize and manage the network as per needs. SDN network having centralized control plane provides a global view, such that the flows are planned based on defined network policies to support traffic engineering, security, load balancing, etc. (Hayward et al., 2015). The following Figure 1 illustrates the architecture of SDN.

Figure 1.

Architecture of SDN

978-1-7998-7705-9.ch023.f01

Complete Chapter List

Search this Book:
Reset