Análisis de vulnerabilidades a nivel de seguridad en redes SDN para los planos de control y plano de datos
Análisis de vulnerabilidades a nivel de seguridad en redes SDN para los planos de control y plano de datos
En el presente proyecto se realiza el estudio e implementación de una tecnología denominada Red Definida por Software con el objetivo de analizar el plano de control y datos mediante la captura de datos para identificar las posibles vulnerabilidades usando herramientas como Mininet que permite emular estas redes de forma sencilla con la integración del controlador OpenDayLight. Por otra parte, se identifican los potenciales ataques que pueden afectar a la red, se selecciona el ataque de denegación de servicios para la realización de las pruebas de rendimiento mediante la ejecución de un ataque DoS para evaluar varios puntos de la red, usando herramientas como Wireshark y línea de comando, se realiza la captura de datos para realizar el análisis. Los resultados obtenidos evidencian el incremento del tiempo de ida y vuelta (RTT) de los mensajes que viajan por la red, además, el controlador presenta inundación de paquetes falsificados que obstaculizan el correcto funcionamiento del software. Este estudio permite comprender el comportamiento de las redes SDN para que investigaciones futuras puedan implementar herramientas para mitigar este tipo de ataques. In this project, the study and implementation of a technology called Software Defined Network is carried out with the objective of analyzing the control and data plane by capturing data to identify potential vulnerabilities using tools such as Mininet that allows emulating these networks in a simple way with the integration of the OpenDayLight controller. On the other hand, the potential attacks that can affect the network are identified, the denial of service attack is selected for the performance tests by executing a DoS attack to evaluate several points of the network, using tools such as Wireshark and command line, data capture is performed to perform the analysis. The results obtained show an increase in the round-trip time (RTT) of the messages that travel through the network, in addition, the controller presents flooding of forged packets that hinder the correct operation of the software. This study allows understanding the behavior of SDN networks so that future research can implement tools to mitigate this type of attacks. Pregrado
- Military University Nueva Granada Colombia
Mininet, Red definida por Software, INGENIERIA DE SOFTWARE, Vulnerabilities, DoS attack, REDES DE INFORMACION, SEGURIDAD EN COMPUTADORES, Software-Defined Networking, Vulnerabilidades, Ataque DoS
Mininet, Red definida por Software, INGENIERIA DE SOFTWARE, Vulnerabilities, DoS attack, REDES DE INFORMACION, SEGURIDAD EN COMPUTADORES, Software-Defined Networking, Vulnerabilidades, Ataque DoS
selected citations These citations are derived from selected sources.This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).0 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Average influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Average impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Average
Citations provided by BIP!Popularity provided by BIP!