Security System Load Reduction in SDN 


Vol. 46,  No. 12, pp. 2251-2261, Dec.  2021
10.7840/kics.2021.46.12.2251


PDF
  Abstract

The recent trend of SDN has been demonstrated for security systems such as Intrusion Detection System and Intrusion Prevention System have been introduced in the SDN environment to increase network security. However, the load on the security system increased by examining all packets, and various packet sampling-based techniques were proposed to solve this problem, but there were still problems with the security system being high or the network security was poor due to the sampling techniques. In this paper, we propose a system improving security and reducing system loads through management table-based packet management in case of flooding attack. The existing system is inspected by backlog queue value but the proposed security system can be flexibly executed for each packet creating a management table. This table is based on the time difference between packets and the frequency of occurrence of packets. The load on the security system can be reduced by blocking the corresponding packet by the controller for a certain period of time when abnormal packet comes. As a result of the performance evaluation of the proposed method, it is confirmed that the load of the security system is improved by about 25% compared to the existing system.

  Statistics
Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.


  Cite this article

[IEEE Style]

Y. Lee and C. Lee, "Security System Load Reduction in SDN," The Journal of Korean Institute of Communications and Information Sciences, vol. 46, no. 12, pp. 2251-2261, 2021. DOI: 10.7840/kics.2021.46.12.2251.

[ACM Style]

Ye-won Lee and Chae-woo Lee. 2021. Security System Load Reduction in SDN. The Journal of Korean Institute of Communications and Information Sciences, 46, 12, (2021), 2251-2261. DOI: 10.7840/kics.2021.46.12.2251.

[KICS Style]

Ye-won Lee and Chae-woo Lee, "Security System Load Reduction in SDN," The Journal of Korean Institute of Communications and Information Sciences, vol. 46, no. 12, pp. 2251-2261, 12. 2021. (https://doi.org/10.7840/kics.2021.46.12.2251)