OrchSec Demo: Demonstrating the Capability of an Orchtestrator-based Architecture for Network Security: Presentation held at Open Networking Summit 2014

AutorZaalouk, Adel; Khondoker, Rahamatullah; Marx, Ronald; Bayarou, Kpatcha
ArtPresentation, Electronic Publication
AbstraktSoftware Defined Networking (SDN) provides features such as control and data plane decoupling, network visibility, and automation. These features promote SDN as a candidate for enhancing network security. However, the research done related to using SDN for network security reflects some limitations such as tightly-coupled application development, usage of a single SDN controller, no decoupling of networking monitoring and control functions. To address these limitations, OrchSec, an architecture for utilizing network monitoring and SDN control functions to enhance network security was proposed. In this demonstration, we aim to show how the applications developed on-top of the OrchSec architecture can be used for detecting and mitigating attacks such as ARP spoofing / cache pois oning, Denial of Service (DoS), and Distributed Denial of Service (DDoS), Domain Name System (DNS) amplification attacks, and Port Scanning behavior.
KonferenzOpen Networking Summit <2014, Santa Clara/Calif.>