Abstract
Although Software Defined Networking (SDN) has a lot of advantages, it also leads to some security issues such as DDoS/DoS attacks, unauthorized access, and single point of failure. To improve the security and efficiency of the SDN control plane, we propose a novel consensus algorithm–Simplified Practical Byzantine Fault Tolerance (SPBFT) to transfer messages between controllers and then establish an analysis model to analyze the security and performance of SPBFT based on game theory. In this paper, we apply blockchain technology in SDN to build a readable, addable, and unmodifiable distributed database which maintains a list of updated system activities and time stamps in each controller. The simplified three-step consensus algorithm SPBFT makes the message transfer and verification carry out efficiently in parallel. In addition, we use recovery mechanism and credibility assessment on the primary controller to increase the invulnerability of system. Simulation results show that compared with the PBFT algorithm, the proposed algorithm can significantly improve system performances in terms of security and efficiency.
Foundation Items: National Natural Science Foundation of China (61871237), National Science and Technology Major Project (2017ZX03001008), and Natural Science Foundation of the Higher Education Institutions of Jiangsu Province (16KJA510005).
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Dabbagh, M., Hamdaoui, B., Guizani, M., Rayes, A.: Software-defined networking security: pros and cons. IEEE Commun. Mag. 53(6), 73–79 (2015)
Dargahi, T., Caponi, A., Ambrosin, M., Bianchi, G., Conti, M.: A Survey on the security of stateful SDN data planes. IEEE Commun. Surv. Tutorials 19(3), 1701–1725 (2017)
Liang, X.D., Qiu, X.F.: A software defined security architecture for SDN-based 5G network. In: 2016 IEEE International Conference on Network Infrastructure and Digital Content (IC-NIDC), pp. 17–21 (2016)
Liyanage, M., Ahmed, I., Ylianttila, M., et al.: Security for future software defined mobile networks. In: 2015 9th International Conference on Next Generation Mobile Applications, Services and Technologies, pp. 256–264 (2015)
Zhao, Z., Liu, F.L., Gong, D.F.: An SDN based hopping multicast communication against DoS attack. KSII Trans. Internet Inf. Syst. 11(4), 2196–2218 (2017)
Dridi, L., Zhani, M.F.: SDN-guard: DoS attacks mitigation in SDN networks. In: 2016 5th IEEE International Conference on Cloud Networking, pp. 212–217 (2016)
Macedo, R., Castro, R.D., Santos, A., Ghamri-Doudane, Y., Nogueira, M.: Self-organized SDN controller cluster conformations against DDoS attacks effects. In: 2016 IEEE Global Communications Conference (GLOBECOM), pp. 1–6 (2016)
Xia, Q., Sifah, E.B., Asamoah, K.O.: MeDShare: trust-less medical data sharing among cloud service providers via blockchain. IEEE Access 5, 14757–14767 (2017)
Herbaut, N., Negru, N.: A model for collaborative blockchain-based video delivery relying on advanced network services chains. IEEE Commun. Mag. 55(9), 70–76 (2017)
Rottondi, C., Verticale, G.: A privacy-friendly gaming framework in smart electricity and water grids. IEEE Access 5, 14221–14233 (2017)
Zhang, J., Xue, N., Huang, X.: A secure system for pervasive social network-based healthcare. IEEE Access 4(1), 9239–9250 (2016)
Anjum, M., Sporny, A.: Sill: blockchain standards for compliance and trust. IEEE Cloud Comput. 4(4), 84–89 (2017)
Sharma, P.K., Chen, M.Y., Park, J.H.: A software defined fog node based distributed blockchain cloud architecture for IoT. IEEE Access 6, 115–124 (2017)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering
About this paper
Cite this paper
Shao, Z., Zhu, X., Chikuvanyanga, A.M.M., Zhu, H. (2019). Blockchain-Based SDN Security Guaranteeing Algorithm and Analysis Model. In: Jia, M., Guo, Q., Meng, W. (eds) Wireless and Satellite Systems. WiSATS 2019. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 281. Springer, Cham. https://doi.org/10.1007/978-3-030-19156-6_32
Download citation
DOI: https://doi.org/10.1007/978-3-030-19156-6_32
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-19155-9
Online ISBN: 978-3-030-19156-6
eBook Packages: Computer ScienceComputer Science (R0)