BlackNurse-SC: A Novel Attack on SDN Controller

Software-Defined Network (SDN) makes the network programmable by offloading the network modules to the controller in the control plane. Though the controller offers several security features, it is susceptible to attacks. In this letter, we introduce a novel attack named BlackNurse against the SDN C...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
Veröffentlicht in:	IEEE communications letters 2021-07, Vol.25 (7), p.2146-2150
Hauptverfasser:	Ravi, Nagarathna, Shalinie, S. Mercy
Format:	Artikel
Sprache:	eng
Schlagworte:	BlackNurse-SC attack Computer crime Control systems controller Controllers Cybersecurity Denial of service attacks distributed denial of service Network topologies Network topology Poisons Programmable logic controllers Receivers Security Software-defined networking Software-defined networks Time factors Topology
Online-Zugang:	Volltext bestellen
Tags:	Tag hinzufügen Keine Tags, Fügen Sie den ersten Tag hinzu!

container_end_page	2150
container_issue	7
container_start_page	2146
container_title	IEEE communications letters
container_volume	25
creator	Ravi, Nagarathna Shalinie, S. Mercy
description	Software-Defined Network (SDN) makes the network programmable by offloading the network modules to the controller in the control plane. Though the controller offers several security features, it is susceptible to attacks. In this letter, we introduce a novel attack named BlackNurse against the SDN Controller (BlackNurse-SC). BlackNurse-SC targets to bring down the controller and create a Denial of Service (DoS) to the whole network. The attacker disrupts the controller by sending out false error messages from his bots. BlackNurse-SC has two salient features. First, the attacker need not generate a flood of malicious packets, thus making it difficult for the controller to detect that it is subject to attack. Second, the attacker poisons the network topology view, which leads to improper functioning of the controller. We launch the attack in our SDN testbed to ascertain the effects it can create in the network. BlackNurse-SC brought down the controller within 20 seconds.
doi_str_mv	10.1109/LCOMM.2021.3075898
format	Article
fullrecord	<record><control><sourceid>proquest_RIE</sourceid><recordid>TN_cdi_crossref_primary_10_1109_LCOMM_2021_3075898</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>9416472</ieee_id><sourcerecordid>2549755835</sourcerecordid><originalsourceid>FETCH-LOGICAL-c295t-a7120eac572e64f51e2c37bca8b708bbfc098ada53584eaec51e9813ce5f60193</originalsourceid><addsrcrecordid>eNo9kE9PwzAMxSMEEmPwBeBSiXM7J2mWhNvo-Cdt3WFwjtLgShtlGUmHxLcnYxMX27Le85N_hFxTKCgFPZpVi_m8YMBowUEKpdUJGVAhVM5SOU0zKJ1LqdU5uYhxDQCKCTogo_vOuo96FyLmy-oum2S1_8Yum_R92md-ky2ndVb5TR9812G4JGet7SJeHfuQvD0-vFbP-Wzx9FJNZrljWvS5lZQBWickw3HZCorMcdk4qxoJqmlaB1rZdyu4UCVadEmhFeUORTsGqvmQ3B7uboP_2mHszdrvwiZFGiZKLdNXXCQVO6hc8DEGbM02rD5t-DEUzB6M-QNj9mDMEUwy3RxMK0T8N-iSjkvJ-C9syVzk</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2549755835</pqid></control><display><type>article</type><title>BlackNurse-SC: A Novel Attack on SDN Controller</title><source>IEEE Xplore</source><creator>Ravi, Nagarathna ; Shalinie, S. Mercy</creator><creatorcontrib>Ravi, Nagarathna ; Shalinie, S. Mercy</creatorcontrib><description>Software-Defined Network (SDN) makes the network programmable by offloading the network modules to the controller in the control plane. Though the controller offers several security features, it is susceptible to attacks. In this letter, we introduce a novel attack named BlackNurse against the SDN Controller (BlackNurse-SC). BlackNurse-SC targets to bring down the controller and create a Denial of Service (DoS) to the whole network. The attacker disrupts the controller by sending out false error messages from his bots. BlackNurse-SC has two salient features. First, the attacker need not generate a flood of malicious packets, thus making it difficult for the controller to detect that it is subject to attack. Second, the attacker poisons the network topology view, which leads to improper functioning of the controller. We launch the attack in our SDN testbed to ascertain the effects it can create in the network. BlackNurse-SC brought down the controller within 20 seconds.</description><identifier>ISSN: 1089-7798</identifier><identifier>EISSN: 1558-2558</identifier><identifier>DOI: 10.1109/LCOMM.2021.3075898</identifier><identifier>CODEN: ICLEF6</identifier><language>eng</language><publisher>New York: IEEE</publisher><subject>BlackNurse-SC attack ; Computer crime ; Control systems ; controller ; Controllers ; Cybersecurity ; Denial of service attacks ; distributed denial of service ; Network topologies ; Network topology ; Poisons ; Programmable logic controllers ; Receivers ; Security ; Software-defined networking ; Software-defined networks ; Time factors ; Topology</subject><ispartof>IEEE communications letters, 2021-07, Vol.25 (7), p.2146-2150</ispartof><rights>Copyright The Institute of Electrical and Electronics Engineers, Inc. (IEEE) 2021</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c295t-a7120eac572e64f51e2c37bca8b708bbfc098ada53584eaec51e9813ce5f60193</citedby><cites>FETCH-LOGICAL-c295t-a7120eac572e64f51e2c37bca8b708bbfc098ada53584eaec51e9813ce5f60193</cites><orcidid>0000-0003-3542-1879 ; 0000-0003-0355-6832</orcidid></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/9416472$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>314,780,784,796,27923,27924,54757</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/9416472$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Ravi, Nagarathna</creatorcontrib><creatorcontrib>Shalinie, S. Mercy</creatorcontrib><title>BlackNurse-SC: A Novel Attack on SDN Controller</title><title>IEEE communications letters</title><addtitle>COML</addtitle><description>Software-Defined Network (SDN) makes the network programmable by offloading the network modules to the controller in the control plane. Though the controller offers several security features, it is susceptible to attacks. In this letter, we introduce a novel attack named BlackNurse against the SDN Controller (BlackNurse-SC). BlackNurse-SC targets to bring down the controller and create a Denial of Service (DoS) to the whole network. The attacker disrupts the controller by sending out false error messages from his bots. BlackNurse-SC has two salient features. First, the attacker need not generate a flood of malicious packets, thus making it difficult for the controller to detect that it is subject to attack. Second, the attacker poisons the network topology view, which leads to improper functioning of the controller. We launch the attack in our SDN testbed to ascertain the effects it can create in the network. BlackNurse-SC brought down the controller within 20 seconds.</description><subject>BlackNurse-SC attack</subject><subject>Computer crime</subject><subject>Control systems</subject><subject>controller</subject><subject>Controllers</subject><subject>Cybersecurity</subject><subject>Denial of service attacks</subject><subject>distributed denial of service</subject><subject>Network topologies</subject><subject>Network topology</subject><subject>Poisons</subject><subject>Programmable logic controllers</subject><subject>Receivers</subject><subject>Security</subject><subject>Software-defined networking</subject><subject>Software-defined networks</subject><subject>Time factors</subject><subject>Topology</subject><issn>1089-7798</issn><issn>1558-2558</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2021</creationdate><recordtype>article</recordtype><sourceid>RIE</sourceid><recordid>eNo9kE9PwzAMxSMEEmPwBeBSiXM7J2mWhNvo-Cdt3WFwjtLgShtlGUmHxLcnYxMX27Le85N_hFxTKCgFPZpVi_m8YMBowUEKpdUJGVAhVM5SOU0zKJ1LqdU5uYhxDQCKCTogo_vOuo96FyLmy-oum2S1_8Yum_R92md-ky2ndVb5TR9812G4JGet7SJeHfuQvD0-vFbP-Wzx9FJNZrljWvS5lZQBWickw3HZCorMcdk4qxoJqmlaB1rZdyu4UCVadEmhFeUORTsGqvmQ3B7uboP_2mHszdrvwiZFGiZKLdNXXCQVO6hc8DEGbM02rD5t-DEUzB6M-QNj9mDMEUwy3RxMK0T8N-iSjkvJ-C9syVzk</recordid><startdate>20210701</startdate><enddate>20210701</enddate><creator>Ravi, Nagarathna</creator><creator>Shalinie, S. Mercy</creator><general>IEEE</general><general>The Institute of Electrical and Electronics Engineers, Inc. (IEEE)</general><scope>97E</scope><scope>RIA</scope><scope>RIE</scope><scope>AAYXX</scope><scope>CITATION</scope><scope>7SP</scope><scope>8FD</scope><scope>L7M</scope><orcidid>https://orcid.org/0000-0003-3542-1879</orcidid><orcidid>https://orcid.org/0000-0003-0355-6832</orcidid></search><sort><creationdate>20210701</creationdate><title>BlackNurse-SC: A Novel Attack on SDN Controller</title><author>Ravi, Nagarathna ; Shalinie, S. Mercy</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c295t-a7120eac572e64f51e2c37bca8b708bbfc098ada53584eaec51e9813ce5f60193</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2021</creationdate><topic>BlackNurse-SC attack</topic><topic>Computer crime</topic><topic>Control systems</topic><topic>controller</topic><topic>Controllers</topic><topic>Cybersecurity</topic><topic>Denial of service attacks</topic><topic>distributed denial of service</topic><topic>Network topologies</topic><topic>Network topology</topic><topic>Poisons</topic><topic>Programmable logic controllers</topic><topic>Receivers</topic><topic>Security</topic><topic>Software-defined networking</topic><topic>Software-defined networks</topic><topic>Time factors</topic><topic>Topology</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Ravi, Nagarathna</creatorcontrib><creatorcontrib>Shalinie, S. Mercy</creatorcontrib><collection>IEEE All-Society Periodicals Package (ASPP) 2005-present</collection><collection>IEEE All-Society Periodicals Package (ASPP) 1998-Present</collection><collection>IEEE Xplore</collection><collection>CrossRef</collection><collection>Electronics & Communications Abstracts</collection><collection>Technology Research Database</collection><collection>Advanced Technologies Database with Aerospace</collection><jtitle>IEEE communications letters</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Ravi, Nagarathna</au><au>Shalinie, S. Mercy</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>BlackNurse-SC: A Novel Attack on SDN Controller</atitle><jtitle>IEEE communications letters</jtitle><stitle>COML</stitle><date>2021-07-01</date><risdate>2021</risdate><volume>25</volume><issue>7</issue><spage>2146</spage><epage>2150</epage><pages>2146-2150</pages><issn>1089-7798</issn><eissn>1558-2558</eissn><coden>ICLEF6</coden><abstract>Software-Defined Network (SDN) makes the network programmable by offloading the network modules to the controller in the control plane. Though the controller offers several security features, it is susceptible to attacks. In this letter, we introduce a novel attack named BlackNurse against the SDN Controller (BlackNurse-SC). BlackNurse-SC targets to bring down the controller and create a Denial of Service (DoS) to the whole network. The attacker disrupts the controller by sending out false error messages from his bots. BlackNurse-SC has two salient features. First, the attacker need not generate a flood of malicious packets, thus making it difficult for the controller to detect that it is subject to attack. Second, the attacker poisons the network topology view, which leads to improper functioning of the controller. We launch the attack in our SDN testbed to ascertain the effects it can create in the network. BlackNurse-SC brought down the controller within 20 seconds.</abstract><cop>New York</cop><pub>IEEE</pub><doi>10.1109/LCOMM.2021.3075898</doi><tpages>5</tpages><orcidid>https://orcid.org/0000-0003-3542-1879</orcidid><orcidid>https://orcid.org/0000-0003-0355-6832</orcidid></addata></record>
fulltext	fulltext_linktorsrc
identifier	ISSN: 1089-7798
ispartof	IEEE communications letters, 2021-07, Vol.25 (7), p.2146-2150
issn	1089-7798 1558-2558
language	eng
recordid	cdi_crossref_primary_10_1109_LCOMM_2021_3075898
source	IEEE Xplore
subjects	BlackNurse-SC attack Computer crime Control systems controller Controllers Cybersecurity Denial of service attacks distributed denial of service Network topologies Network topology Poisons Programmable logic controllers Receivers Security Software-defined networking Software-defined networks Time factors Topology
title	BlackNurse-SC: A Novel Attack on SDN Controller
url	https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-10T18%3A37%3A17IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_RIE&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=BlackNurse-SC:%20A%20Novel%20Attack%20on%20SDN%20Controller&rft.jtitle=IEEE%20communications%20letters&rft.au=Ravi,%20Nagarathna&rft.date=2021-07-01&rft.volume=25&rft.issue=7&rft.spage=2146&rft.epage=2150&rft.pages=2146-2150&rft.issn=1089-7798&rft.eissn=1558-2558&rft.coden=ICLEF6&rft_id=info:doi/10.1109/LCOMM.2021.3075898&rft_dat=%3Cproquest_RIE%3E2549755835%3C/proquest_RIE%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2549755835&rft_id=info:pmid/&rft_ieee_id=9416472&rfr_iscdi=true