Portal de Periódicos da CAPES

An Active Defense Solution for ARP Spoofing in OpenFlow Network

2019; Institution of Engineering and Technology; Volume: 28; Issue: 1 Linguagem: Inglês

10.1049/cje.2017.12.002

2075-5597

Xia Jing, Zhiping Cai, Gang Hu, Ming Xu,

Internet Traffic Analysis and Secure E-voting

As an emerging network technology, Software-defined network (SDN), has been rapidly developing for recent years due to its advantage in network management and updating. There are still a lot of open problems while applying this novel technology in reality, especially for meeting security demands. The Address resolution protocol (ARP) spoofing, a representative network attack in traditional networks is investigated. We implement the ARP spoofing in SDN network firstly and find that the threat of ARP attack still exists and has big impact on the network. We propose a novel mechanism as defense solution for ARP spoofing oriented to OpenFlow platform. Theoretical analyzation is given, and the mechanism is implemented as a module of POX controller. Experiment results and performance evaluations show that our solution can reduce the security threat of ARP spoofing remarkably on OpenFlow platform and related SDN platforms.