Abbas Yazdinejad,Reza M. Parizi,Ali Dehghantanha,Qi Zhang,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1109/tsc.2020.2966970

IF: 11.019

2020-07-01

IEEE Transactions on Services Computing

Abstract:Internet of Things (IoT) is a disruptive technology in many aspects of our society, ranging from communications to financial transactions to national security (e.g., Internet of Battlefield / Military Things), and so on. There are long-standing challenges in IoT, such as security, comparability, energy consumption, and heterogeneity of devices. Security and energy aspects play important roles in data transmission across IoT and edge networks, due to limited energy and computing (e.g., processing and storage) resources of networked devices. Whether malicious or accidental, interference with data in an IoT network potentially has real-world consequences. In this article, we explore the potential of integrating blockchain and software-defined networking (SDN) in mitigating some of the challenges. Specifically, we propose a secure and energy-efficient blockchain-enabled architecture of SDN controllers for IoT networks using a cluster structure with a new routing protocol. The architecture uses public and private blockchains for Peer to Peer (P2P) communication between IoT devices and SDN controllers, which eliminates Proof-of-Work (POW), as well as using an efficient authentication method with the distributed trust, making the blockchain suitable for resource-constrained IoT devices. The experimental results indicate that the routing protocol based on the cluster structure has higher throughput, lower delay, and lower energy consumption than EESCFD, SMSN, AODV, AOMDV, and DSDV routing protocols. In other words, our proposed architecture is demonstrated to outperform classic blockchain.

computer science, information systems, software engineering

Zhihao Zeng,Xiaoning Zhang,Zixiang Xia

DOI: https://doi.org/10.1155/2022/5693962

2022-01-01

Wireless Communications and Mobile Computing

Abstract:The development of fifth-generation (5G) mobile communication technology has become a major driver to the growth of Internet of Things (IoT) applications. As a promising networking paradigm, software-defined networking (SDN) makes IoT more flexible and agile by decoupling control plane from data plane. With a large number of heterogeneous devices accessing to the network, we need to divide the network into several domains and each domain is managed by an SDN controller. Controllers share topologies with each other to form global view of the entire network, which is used for crossing-domain path routing. However, crossing-domain routing requires global trust between multiple controllers. The reason is that if the malicious controller shares misleading topologies, the rest of controllers may calculate mistaken crossing-domain paths. As a result, packets are forwarded to the domain that is managed by the malicious controller and dropped deliberately, which is known as the black-hole attack. To this end, we present a blockchain-based architecture to ensure secure routing among multiple domains in SDN-enabled IoT networks. All SDN controllers are equipped with blockchains, and they upload abstract topologies to the blockchain via the smart contract. Thus, the genuine view of the entire network can be gained from the blockchain due to its consensus and immutability. In addition, we use the concept of reputation that consists of the local reputation and the global reputation to further protect routing reliability, and the global reputation is reserved in the blockchain. Compared with benchmark architectures, the emulation results show that our proposed method can effectively build trust between multiple controllers and ensure secure routing among multiple domains.

Sohaib A. Latif,Fang B. Xian Wen,Celestine Iwendi,Li-li F. Wang,Syed Muhammad Mohsin,Zhaoyang Han,Shahab S. Band

DOI: https://doi.org/10.1016/j.comcom.2021.09.029

IF: 5.047

2022-01-01

Computer Communications

Abstract:Internet of things (IoT) is one of the most emerging technologies nowadays and it is one of the key enablers of industrial cyber physical system (CPSs). It has started to participate in almost every aspect of our social life, ranging from financial transactions to the healthcare system, communication to national security, battlefield to smart homes, and so on. However, the wide deployment of IoT suffers certain issues as well, such as interoperability, compatibility, heterogeneity, large amount of data, processing of heterogeneous data etc. Among others, energy efficiency and security are the utmost prominent issues. Scarce computing resources of IoT devices put hindrances on information sharing across edge or IoT network. Indeed, unintentional or malicious interference with IoT data may lead to severe concerns. In this study, the researcher exploits the potential benefits of a blockchain system and integrates it with software-defined networking (SDN) while justifying energy and security issues. More in detail, the researcher proposed a new routing protocol with the cluster structure for IoT networks using blockchain-based architecture for SDN controller. The proposed architecture obviates proof-of-work (PoW) with private and public blockchains for Peer-to-Peer (P2P) communication between SDN controllers and IoT devices. In addition to this, distributed trust-based authentication mechanism makes blockchain even more adoptive for IoT devices with limited resources. The experimental results show that the proposed cluster structure based routing protocol outperforms the state-of-the-art Ad-hoc On-demand Distance Vector (AODV), Destination-Sequenced Distance Vector (DSDV), Secure Mobile Sensor Network (SMSN), Energy efficient secured cluster based distributed fault diagnosis (EESCFD), and Ad-hoc On-demand Multipath Distance Vector (AOMDV), in terms of energy consumption, network throughput, and packet latency. Proposed protocol help overcome the issues especially, energy management and security of the next generation industrial cyber physical systems.

computer science, information systems,telecommunications,engineering, electrical & electronic

Weng Jiasi,Weng Jian,Liu Jia-Nan,Zhang Yue

DOI: https://doi.org/10.48550/arxiv.1906.04342

2019-01-01

Abstract:Software-Defined Networking (SDN) separates the network control plane and data plane, which provides a network-wide view with centralized control (in the control plane) and programmable network configuration for data plane injected by SDN applications (in the application plane). With these features, a number of drawbacks of the traditional network architectures such as static configuration, non-scalability and low efficiency can be effectively avoided. However, SDN also brings with it some new security challenges, such as single-point failure of the control plane, malicious flows from applications, exposed network-wide resources and a vulnerable channel between the control plane and the data plane. In this paper, we design a monolithic security mechanism for SDN based on Blockchain. Our mechanism decentralizes the control plane to overcome single-point failure while maintaining a network-wide view. The mechanism also guarantees the authenticity, traceability, and accountability of application flows, and hence secures the programmable configuration. Moreover, the mechanism provides a fine-grained access control of network-wide resources and a secure controller-switch channel to further protect resources and communication in SDN.

Lei Liu,Wei Feng,Chen,Yuru Zhang,Dapeng Lan,Xiaoming Yuan,Sahil Vashisht

DOI: https://doi.org/10.1109/infocomwkshps50562.2020.9163070

2020-01-01

Abstract:Software Defined Networking (SDN) is a promising platform to secure and manage large-scale Internet of Things (IoT) due to its separated control and data plane functionality as well as programmability in the network. The original design of SDN faces single point of failure, and therefore several decentralized SDN architectures for IoT were proposed. However, practical SDN may be deployed by various networking operators, which incurs the conflict between data security of different networking operators and cooperative network management among them. Existing schemes cannot well support the cooperative network management among multiple controllers and meanwhile guarantee data security. To tackle this problem, we propose a blockchain based SDN framework for IoT called BS-IoT. BS-IoT introduces blockchain into SDN to support secure and cooperative network management. Besides, we leverage blockchain sharding for better efficiency and improve it with secure multi-party computation (SMPC) to make it suitable for decentralized SDN management with data security. The security analysis illustrate the security and effectiveness of our scheme.

Huo Liuwei,Jiang Dingde,Qi Sheng,Miao Lei

DOI: https://doi.org/10.1007/s11036-019-01420-6

2020-01-01

Abstract:Software Defined Networking (SDN) architecture separates control plane and data plane, making network flexible and programmable. Since the large number of devices connected to the Internet of things (IoT) networks, the SDN-based network architecture makes the deployment and configuration of IoT much easier. In the IoT network, the fine-grained network traffic is critical to network management, then we propose a novel scheme to measure the fine-grained network traffic in the SDN-based IoT networks. In SDN-based IoT networks, the controller is very easy to be attacked, we introduce the blockchain technology into the measurement framework to ensure the security and consistency of the statistics. To measure flow traffic with low overhead and high accuracy, we collect the statistics of coarse-grained traffic of flows and fine-grained traffic of links, and model the network traffic as an ARIMA model and forecast the network traffic with the coarse-grained measurement of flows. Then, we propose an objective function to decrease the estimation errors. Due to the objective function is an NP-hard problem, we present a heuristic algorithm to obtain the optimal solution of the fine-grained measurement. Finally, we conduct some simulations to verify the validity of the proposed measurement scheme. Simulation results show that our approach is feasible and effective.

Shalli Rani,Himanshi Babbar,Gautam Srivastava,Thippa Reddy Gadekallu,Gaurav Dhiman

DOI: https://doi.org/10.1109/jiot.2022.3223576

IF: 10.6

2023-03-25

IEEE Internet of Things Journal

Abstract:Presently, trillions of Internet of Things (IoT) devices are in use, with many more projected to join IoT networks in the future. These IoT devices create a massive volume of data, which cannot be transmitted over the network without proper security and privacy. Furthermore, as the amount of information and variety of interconnected devices grows, problems, including excessive response time, bandwidth constraints, and scalability, emerge in proper network design. To solve the constraints of today's smart cities for next-generation networks, an effective, secure, and scalable distributed framework must be designed bringing computing and storage resources nearer to endpoints. In this article, combining the strengths of software-defined networks (SDNs) and blockchain technology, an innovative adaptable network infrastructure for smart cities is developed. The network is divided into different domains in which SDN will detect potential attacks and transmit the secured data to the blockchain. Our in-depth experimental analysis on performance evaluation show that the proposed framework achieves 12.75% improvement over baseline methodologies.

computer science, information systems,telecommunications,engineering, electrical & electronic

Ngangbam Indrason,Goutam Saha

DOI: https://doi.org/10.1016/j.jnca.2024.103838

IF: 7.574

2024-04-01

Journal of Network and Computer Applications

Abstract:The Internet of Things (IoT) is an emerging field of technology with a huge scope of its applicability in various industries and a wide range of societal needs, including medical sciences. However, IoT suffers from many limitations like energy, resource constraints, scalability, security, availability, etc. Software-Defined Networking (SDN) is another similar technology that has many features that are capable of solving many of the limitations of the conventional IoT system. So, suitably incorporating SDN technology into the conventional IoT system, an improved version of IoT namely an SDN-based IoT network system has been evolved. This system is capable of resolving many of the limitations of IoT. Since this newer SDN-based IoT version is enriched with better energy and resources, it can undertake higher computational loads to resolve security issues. In the security domain, Blockchain is a state-of-the-art security-based technology in recent times which has already been implemented in the fields of cryptocurrency effectively. So, Many research opportunities emerge out in adapting Blockchain-based technology suitable for the SDN-based IoT Networking domain. This paper deals with the investigations carried out by the past researchers on various security aspects of the IoT, SDN, and SDN-based IoT systems and their solutions using various technologies, including that of Blockchain. It was concluded that the convergence of Blockchain in IoT and SDN and its combination (SDN-based IoT) resolved many security issues. Many prominent research gaps still persist here to be resolved. This can be dealt with as a future scope of research opportunities in the domain.

computer science, interdisciplinary applications, software engineering, hardware & architecture

Gagangeet Singh Aujla,Maninderpal Singh,Arnab Bose,Neeraj Kumar,Guangjie Han,Rajkumar Buyya

DOI: https://doi.org/10.1109/mnet.001.1900151

IF: 10.294

2020-01-01

IEEE Network

Abstract:Smart cities have emerged as a hub of intelligent applications (e.g., intelligent transportation systems, smart parking, smart homes, and e-healthcare) to provide ambient-assisted living and quality of experience to wide communities of users. The smooth execution of these applications depends on reliable data transmission between various smart devices and machines. However, the exponential increase in data traffic due to the growing dependency of end users on smart city applications has created various bottlenecks (e.g., channel congestion, manual flow configurations, limited scalability, and low flexibility) on the conventional network backbone, which can degrade the performance of any designed solution in this environment. To mitigate these challenges, SDN emerges as a powerful new technology that provides global visibility of the network by decoupling the control logic from the forwarding devices. The abstraction of network services in SDN architecture provides more flexibility for network administrators to execute various applications. In SDN architecture, the decision making process is handled by a logically centralized controller, which may have a single point of failure. An adversary/ attacker can compromise the controller using different types of attacks (e.g., eavesdropping, man-in-the middle attack, and distributed denial of service) in order to gain total control of the network by updating the flow table entries at the data plane or hindering control plane operations. Therefore, to cope with the aforementioned challenges, new strategies and solutions are required for securing the SDN-enabled network architecture at different planes and their associated interconnections. In this article, various security issues and different attack vectors are discussed along with possible solutions. To mitigate various attacks, BlockSDN, a blockchain as a service framework, for SDN is proposed. The architecture of permissioned blockchain is presented followed by two attack scenarios, 1) a malware compromised switch at the data plane and 2) distributed denial of service attack at the control plane, to demonstrate the applicability of the BlockSDN framework for various future applications. Finally, the open issues and challenges with respect to the design of blockchain solutions for SDN in smart city applications are also discussed.

Tanzila Saba,Khalid Haseeb,Amjad Rehman,Gwanggil Jeon

DOI: https://doi.org/10.1109/tcss.2023.3268592

2023-01-01

IEEE Transactions on Computational Social Systems

Abstract:In the recent era, the communication network with the support of many wireless technologies is giving benefits for remote access. Such a communication model increases the flexibility for data storage with the management of network resources efficiently with the integration of the Internet of Things (IoT). Although, the industrial Internet of Things (IIoT) has enabled the development of numerous machine learning-based solutions to provide real-time applications. However, most of the solutions are not prepared to cope with heterogeneous services and the huge amount of device data in the digital world. Furthermore, conducting financial transactions over the Internet raises several security issues. Such restrictions compromise the sensitive data of financial institutions and also degrade the trust of network users in the system. Thus, this article presents a secured blockchain model for high-performance computing in a big data environment, which aims to protect the business activities for financial interaction with intelligent services of software-defined network (SDN) architecture. First, to keep the security credentials, the SDN controller creates an association between the IoT devices and maintains local and global records. Second, the machine learning approach is explored using reliable and fault-tolerant methods to support the network scalability and extract the updated routing information for transmitting financial data. The proposed protocol also provides data integrity with a high level of network availability and copes with the financial security of big data by investigating cryptographic approaches. Our proposed protocol is tested using simulation, and various experiments are performed to show its efficacy in terms of network throughput, computing overhead, data delay, response time, and dropped packets as compared to tunicate swarm algorithm-based optimized routing mechanism (TORM) and RouteChain.

English Else

Jiejun Hu,Martin Reed,Mays Al-Naday,Nikolaos Thomos

DOI: https://doi.org/10.48550/arXiv.2006.14513

2020-06-25

Networking and Internet Architecture

Abstract:The Internet of Things (IoT) connected by Software Defined Networking (SDN) promises to bring great benefits to cyber-physical systems. However, the increased attack surface offered by the growing number of connected vulnerable devices and complex nature of SDN control plane applications could overturn the huge benefits of such a system. This paper addresses the vulnerability of some unspecified security flaw in the SDN control plane application (such as a zero-day software vulnerability) which can be exploited to insert malicious flow rules in the switch that do not match network policies. Specifically, we propose a blockchain-as-a-service (BaaS) based framework that supports switch flow verification and insertion; and additionally provides straightforward deployment of blockchain technology within an existing SDN infrastructure. While use of an external BaaS brings straightforward deployment, it obscures knowledge of the blockchain agents who are responsible for flow conformance testing through a smart blockchain contract, leading to potential exploitation. Thus, we design a strategy to prevent the blockchain agents from acting arbitrarily, as this would result in what is termed a "moral hazard". We achieve this by developing a novel mathematical model of the fair reward scheme based on game theory. To understand the performance of our system, we evaluate our model using a Matlab based simulation framework. The simulation results demonstrate that the proposed algorithm balances the needs of the blockchain agents to maximise the overall social welfare, i.e. the sum of profits across all parties.

Sasikumar Asaithambi,Logesh Ravi,Hossam Kotb,Ahmad H Milyani,Abdullah Ahmed Azhari,Senthilkumar Nallusamy,Vijayakumar Varadarajan,Subramaniyaswamy Vairavasundaram

DOI: https://doi.org/10.3390/s22207917

2022-10-18

Abstract:The number of unsecured and portable Internet of Things (IoT) devices in the smart industry is growing exponentially. A diversity of centralized and distributed platforms have been implemented to defend against security attacks; however, these platforms are insecure because of their low storage capacities, high power utilization, single node failure, underutilized resources, and high end-to-end delay. Blockchain and Software-Defined Networking (SDN) are growing technologies to create a secure system and to ensure safe network connectivity. Blockchain technology offers a strong and trustworthy foundation to deal with threats and problems, including safety, privacy, adaptability, scalability, and security. However, the integration of blockchain with SDN is still in the implementation phase, which provides an efficient resource allocation and reduced latency that can overcome the issues of industrial IoT networks. We propose an energy-efficient blockchain-integrated software-defined networking architecture for Industrial IoT (IIoT) to overcome these challenges. We present a framework for implementing decentralized blockchain integrated with SDN for IIoT applications to achieve efficient energy utilization and cluster-head selection. Additionally, the blockchain-enabled distributed ledger ensures data consistency throughout the SDN controller network and keeps a record of the nodes enforced in the controller. The simulation result shows that the proposed model provides the best energy consumption, end-to-end latency, and overall throughput compared to the existing works.

Hamad Alrashede,Fathy Eassa,Abdullah Marish Ali,Faisal Albalwy,Hosam Aljihani

DOI: https://doi.org/10.3390/electronics13193799

IF: 2.9

2024-09-26

Electronics

Abstract:Software-Defined Networking (SDN) has emerged as a revolutionary architecture in computer networks, offering comprehensive network control and monitoring capabilities. However, securing the east–west interface, which is crucial for communication between distributed SDN controllers, remains a significant challenge. This study proposes a novel blockchain-based security framework that integrates Ethereum technology with customized blockchain algorithms for authentication, encryption, and access control. The framework introduces decentralized mechanisms to protect against diverse attacks, including false data injection, man-in-the-middle (MitM), and unauthorized access. Experimental results demonstrate the effectiveness of this framework in securing distributed controllers while maintaining high network performance and low latency, paving the way for more resilient and trustworthy SDN infrastructures.

engineering, electrical & electronic,computer science, information systems,physics, applied

Ao Xiong,Hongkang Tian,Wenchen He,Jie Zhang,Huiping Meng,Shaoyong Guo,Xinyan Wang,Xinyi Wu,Michel Kadoch

DOI: https://doi.org/10.1155/2021/9495093

IF: 1.968

2021-01-01

Security and Communication Networks

Abstract:This paper proposes a smart grid distributed security architecture based on blockchain technology and SDN cluster structure, referred to as ClusterBlock model, which combines the advantages of two emerging technologies, blockchain and SDN. The blockchain technology allows for distributed peer-to-peer networks, where the network can ensure the trusted interaction of untrusted nodes in the network. At the same time, this article adopts the design of an SDN controller distributed cluster to avoid single point of failure and balance the load between equipment and the controller. A cluster head was selected in each SDN cluster, and it was used as a blockchain node to construct an SDN cluster head blockchain. By combining blockchain technology, the security and privacy of the SDN communication network can be enhanced. At the same time, this paper designs a distributed control strategy and network attack detection algorithm based on blockchain consensus and introduces the Jaccard similarity coefficient to detect the network attacks. Finally, this paper evaluates the ClusterBlock model and the existing model based on the OpenFlow protocol through simulation experiments and compares the security performance. The evaluation results show that the ClusterBlock model has more stable bandwidth and stronger security performance in the face of DDoS attacks of the same scale.

Ying Gao,Yijian Chen,Hongliang Lin,Joel J. P. C. Rodrigues

DOI: https://doi.org/10.1109/infocomwkshps50562.2020.9162725

2020-01-01

Abstract:Software-defined networks offer lower latency service and massive intelligent devices connectivity for the Internet of Things(IoT). As one of the pivotal applications in the IoT, smart community provides smart services for residents through the SDN technique. However, the centralized SDN suffers from single point of attacks such as DDoS from IoT devices and has the issue of data leakage. In this paper, we use blockchain and proxy re-encryption(PRE) technologies to tackle these challenges. The blockchain authorizes all devices in the network to improve their credibility and authenticity. What's more, a blockchain-based data sharing framework that combines a PRE scheme is introduced for secure device-to-device communication in smart communities. A series of smart contracts are designed for flexible operations of searching and updating records on the blockchain. The experiments reveal that our design is highly efficient and has high performance.

Jianbin Gao,Kwame Opuni-Boachie Obour Agyekum,Emmanuel Boateng Sifah,Kingsley Nketia Acheampong,Qi Xia,Xiaojiang Du,Mohsen Guizani,Hu Xia

DOI: https://doi.org/10.1109/jiot.2019.2956241

IF: 10.6

2019-01-01

IEEE Internet of Things Journal

Abstract:The goal of intelligent transport systems (ITSs) is to enhance the network performance of vehicular ad hoc networks (VANETs). Even though it presents new opportunities to the Internet of Vehicles (IoV) environment, there are some security concerns including the need to establish trust among the connected peers. The fifth-generation (5G) communication system, which provides reliable and low-latency communication services, is seen as the technology to cater for the challenges in VANETs. The incorporation of software-defined networks (SDNs) also ensures an effective network management. However, there should be monitoring and reporting services provided in the IoV. Blockchain, which has decentralization, transparency, and immutability as some of its properties, is designed to ensure trust in networking platforms. In that regard, this article analyzes the combination of blockchain and SDN for the effective operation of the VANET systems in 5G and fog computing paradigms. With managerial responsibilities shared between the blockchain and the SDN, it helps to relieve the pressure off the controller due to the ubiquitous processing that occurs. A trust-based model that curbs malicious activities in the network is also presented. The simulation results substantially guarantee an efficient network performance, while also ensuring that there is trust among the entities.

Haiping Si,Changxia Sun,Yanling Li,Hongbo Qiao,Lei Shi

DOI: https://doi.org/10.1016/j.future.2019.07.036

IF: 7.307

2019-12-01

Future Generation Computer Systems

Abstract:<p>The blockchain is the first distributed recording system with its own trust mechanism. It builds a reliable architecture for decentralized control through multi-node information redundancy. Based on this, this paper proposes lightweight IoT information sharing security framework based on blockchain technology. The framework adopts a double-chain model combining data blockchain and transaction blockchain: distributed storage and tamper-proof of data in the data blockchain, and improved by the improved practical Byzantine fault-tolerant (PBFT) mechanism consensus algorithm. Data registration efficiency; resource and data transactions in the transaction blockchain is improved transaction efficiency and privacy protection through improved algorithms based on partial blind signature algorithms. A dynamic game method of node cooperation is proposed to prevent malicious behavior of local dominance. The state of the unknown node is estimated by reporting the node's institutional reputation value; the high-trust reference report is used to correct the weight of the malicious node in the overall report and node merging, and finally reach the Bayesian equilibrium. Finally, the simulation experiment department carried out verification analysis on the anti-attack capability, double-strand processing capability and delay. The results show that the framework is safe, effective and feasible, and it is feasible to verify the location information of the system for secure storage devices.</p>

Hui Yang,Yongshen Liang,Qiuyan Yao,Shaoyong Guo,Ao Yu,Jie Zhang

DOI: https://doi.org/10.23919/jcc.2019.06.004

2019-01-01

China Communications

Abstract:Software defined optical networking (SDON) is a critical technology for the next generation network with the advantages of programmable control and etc. As one of the key issues of SDON, the security of control plane has also received extensive attention, especially in certain network scenarios with high security requirement. Due to the existence of vulnerabilities and heavy overhead, the existing firewalls and distributed control technologies cannot solve the control plane security problem well. In this paper, we propose a distributed control architecture for SDON using the blockchain technique (BlockCtrl). The proposed BlockCtrl model introduces the advantages of blockchain into SDON to achieve a high-efficiency fault tolerant control. We have evaluated the performance of our proposed architecture and compared it to the existing models with respect to various metrics including processing rate, recovery latency and etc. The numerical results show that the BlockCtrl is capable of attacks detection and fault tolerant control in SDON with high performance on resource utilization and service correlation.

Abdelouahid Derhab,Mohamed Guerroumi,Abdu Gumaei,Leandros Maglaras,Mohamed Amine Ferrag,Mithun Mukherjee,Farrukh Aslam Khan

DOI: https://doi.org/10.3390/s19143119

2019-07-15

Abstract:The industrial control systems are facing an increasing number of sophisticated cyber attacks that can have very dangerous consequences on humans and their environments. In order to deal with these issues, novel technologies and approaches should be adopted. In this paper, we focus on the security of commands in industrial IoT against forged commands and misrouting of commands. To this end, we propose a security architecture that integrates the Blockchain and the Software-defined network (SDN) technologies. The proposed security architecture is composed of: (a) an intrusion detection system, namely RSL-KNN, which combines the Random Subspace Learning (RSL) and K-Nearest Neighbor (KNN) to defend against the forged commands, which target the industrial control process, and (b) a Blockchain-based Integrity Checking System (BICS), which can prevent the misrouting attack, which tampers with the OpenFlow rules of the SDN-enabled industrial IoT systems. We test the proposed security solution on an Industrial Control System Cyber attack Dataset and on an experimental platform combining software-defined networking and blockchain technologies. The evaluation results demonstrate the effectiveness and efficiency of the proposed security solution.

Xinbin Zuo,Xue Pang,Pengping Zhang,Junsan Zhang,Tao Dong,Peiying Zhang

DOI: https://doi.org/10.1109/comcomap51192.2020.9398887

2020-01-01

Abstract:With the improvement of people’s living standards, more and more network users access the network, including a large number of infrastructure, these devices constitute the Internet of things(IoT). With the rapid expansion of devices in the IoT, the data transmission between the IoT has become more complex, and the security issues are facing greater challenges. SDN as a mature network architecture, its security has been affirmed by the industry, it separates the data layer from the control layer, thus greatly improving the security of the network. In this paper, we apply the SDN to the IoT, and propose a IoT network architecture based on SDN. In this architecture, we not only make use of the security features of SDN, but also deploy different security modules in each layer of SDN to integrate, analyze and plan various data through the IoT, which undoubtedly improves the security performance of the network. In the end, we give a comprehensive introduction to the system and verify its performance.