Unveiling SDN Controller Identity through Timing Side Channel

Sukwha Kyung; Jaejong Baek; Gail Joon Ahn

doi:10.1109/NoF62948.2024.10741434

Unveiling SDN Controller Identity through Timing Side Channel

Sukwha Kyung, Jaejong Baek, Gail Joon Ahn

Engineering, Ira A. Fulton Schools of (IAFSE)

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Software-defined networking (SDN) has revolutionized the landscape of network management by decoupling control and data planes and becoming the backbone of many IT infrastructures including data centers, cloud computing, and enterprise networks. At the same time, however, the control plane has become a prime target for adversaries due to its critical role in network operations and centralized control functions. In this paper, we demonstrate how to discover the identity of different SDN controllers, which could be leveraged for more sophisticated attacks by adversaries. Our approach adopts a timing-based side channel and deep neural networks (DNN). To achieve this, we analyze real-world SDN traffic in a research computing center and accurately identify the controllers, minimizing the impact of random noise. Despite various factors that influence controller behaviors, our fingerprinting approach achieves an average accuracy of more than 90%. Lastly, the mitigation strategies are also discussed.

Original language	English (US)
Title of host publication	Proceedings of the 15th International Conference on Network of the Future, NoF 2024
Editors	Toktam Mahmoodi, Raul Munoz, Prosper Chemouil, Sebastian Troia, Thi-Mai-Trang Nguyen
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	169-177
Number of pages	9
ISBN (Electronic)	9798350377767
DOIs	https://doi.org/10.1109/NoF62948.2024.10741434
State	Published - 2024
Event	15th International Conference on Network of the Future, NoF 2024 - Barcelona, Spain Duration: Oct 2 2024 → Oct 4 2024

Publication series

Name	Proceedings of the 15th International Conference on Network of the Future, NoF 2024

Conference

Conference	15th International Conference on Network of the Future, NoF 2024
Country/Territory	Spain
City	Barcelona
Period	10/2/24 → 10/4/24

ASJC Scopus subject areas

Hardware and Architecture
Safety, Risk, Reliability and Quality
Control and Optimization
Computer Networks and Communications

Access to Document

10.1109/NoF62948.2024.10741434

Cite this

Kyung, S., Baek, J., & Ahn, G. J. (2024). Unveiling SDN Controller Identity through Timing Side Channel. In T. Mahmoodi, R. Munoz, P. Chemouil, S. Troia, & T.-M.-T. Nguyen (Eds.), Proceedings of the 15th International Conference on Network of the Future, NoF 2024 (pp. 169-177). (Proceedings of the 15th International Conference on Network of the Future, NoF 2024). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/NoF62948.2024.10741434

Unveiling SDN Controller Identity through Timing Side Channel. / Kyung, Sukwha; Baek, Jaejong; Ahn, Gail Joon.
Proceedings of the 15th International Conference on Network of the Future, NoF 2024. ed. / Toktam Mahmoodi; Raul Munoz; Prosper Chemouil; Sebastian Troia; Thi-Mai-Trang Nguyen. Institute of Electrical and Electronics Engineers Inc., 2024. p. 169-177 (Proceedings of the 15th International Conference on Network of the Future, NoF 2024).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Kyung, S, Baek, J & Ahn, GJ 2024, Unveiling SDN Controller Identity through Timing Side Channel. in T Mahmoodi, R Munoz, P Chemouil, S Troia & T-M-T Nguyen (eds), Proceedings of the 15th International Conference on Network of the Future, NoF 2024. Proceedings of the 15th International Conference on Network of the Future, NoF 2024, Institute of Electrical and Electronics Engineers Inc., pp. 169-177, 15th International Conference on Network of the Future, NoF 2024, Barcelona, Spain, 10/2/24. https://doi.org/10.1109/NoF62948.2024.10741434

Kyung S, Baek J, Ahn GJ. Unveiling SDN Controller Identity through Timing Side Channel. In Mahmoodi T, Munoz R, Chemouil P, Troia S, Nguyen TMT, editors, Proceedings of the 15th International Conference on Network of the Future, NoF 2024. Institute of Electrical and Electronics Engineers Inc. 2024. p. 169-177. (Proceedings of the 15th International Conference on Network of the Future, NoF 2024). doi: 10.1109/NoF62948.2024.10741434

Kyung, Sukwha ; Baek, Jaejong ; Ahn, Gail Joon. / Unveiling SDN Controller Identity through Timing Side Channel. Proceedings of the 15th International Conference on Network of the Future, NoF 2024. editor / Toktam Mahmoodi ; Raul Munoz ; Prosper Chemouil ; Sebastian Troia ; Thi-Mai-Trang Nguyen. Institute of Electrical and Electronics Engineers Inc., 2024. pp. 169-177 (Proceedings of the 15th International Conference on Network of the Future, NoF 2024).

@inproceedings{03a513e21dc14c4a82e68b612becad25,

title = "Unveiling SDN Controller Identity through Timing Side Channel",

abstract = "Software-defined networking (SDN) has revolutionized the landscape of network management by decoupling control and data planes and becoming the backbone of many IT infrastructures including data centers, cloud computing, and enterprise networks. At the same time, however, the control plane has become a prime target for adversaries due to its critical role in network operations and centralized control functions. In this paper, we demonstrate how to discover the identity of different SDN controllers, which could be leveraged for more sophisticated attacks by adversaries. Our approach adopts a timing-based side channel and deep neural networks (DNN). To achieve this, we analyze real-world SDN traffic in a research computing center and accurately identify the controllers, minimizing the impact of random noise. Despite various factors that influence controller behaviors, our fingerprinting approach achieves an average accuracy of more than 90%. Lastly, the mitigation strategies are also discussed.",

author = "Sukwha Kyung and Jaejong Baek and Ahn, {Gail Joon}",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 15th International Conference on Network of the Future, NoF 2024 ; Conference date: 02-10-2024 Through 04-10-2024",

year = "2024",

doi = "10.1109/NoF62948.2024.10741434",

language = "English (US)",

series = "Proceedings of the 15th International Conference on Network of the Future, NoF 2024",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "169--177",

editor = "Toktam Mahmoodi and Raul Munoz and Prosper Chemouil and Sebastian Troia and Thi-Mai-Trang Nguyen",

booktitle = "Proceedings of the 15th International Conference on Network of the Future, NoF 2024",

}

TY - GEN

T1 - Unveiling SDN Controller Identity through Timing Side Channel

AU - Kyung, Sukwha

AU - Baek, Jaejong

AU - Ahn, Gail Joon

PY - 2024

Y1 - 2024

N2 - Software-defined networking (SDN) has revolutionized the landscape of network management by decoupling control and data planes and becoming the backbone of many IT infrastructures including data centers, cloud computing, and enterprise networks. At the same time, however, the control plane has become a prime target for adversaries due to its critical role in network operations and centralized control functions. In this paper, we demonstrate how to discover the identity of different SDN controllers, which could be leveraged for more sophisticated attacks by adversaries. Our approach adopts a timing-based side channel and deep neural networks (DNN). To achieve this, we analyze real-world SDN traffic in a research computing center and accurately identify the controllers, minimizing the impact of random noise. Despite various factors that influence controller behaviors, our fingerprinting approach achieves an average accuracy of more than 90%. Lastly, the mitigation strategies are also discussed.

AB - Software-defined networking (SDN) has revolutionized the landscape of network management by decoupling control and data planes and becoming the backbone of many IT infrastructures including data centers, cloud computing, and enterprise networks. At the same time, however, the control plane has become a prime target for adversaries due to its critical role in network operations and centralized control functions. In this paper, we demonstrate how to discover the identity of different SDN controllers, which could be leveraged for more sophisticated attacks by adversaries. Our approach adopts a timing-based side channel and deep neural networks (DNN). To achieve this, we analyze real-world SDN traffic in a research computing center and accurately identify the controllers, minimizing the impact of random noise. Despite various factors that influence controller behaviors, our fingerprinting approach achieves an average accuracy of more than 90%. Lastly, the mitigation strategies are also discussed.

UR - http://www.scopus.com/inward/record.url?scp=85211901080&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85211901080&partnerID=8YFLogxK

U2 - 10.1109/NoF62948.2024.10741434

DO - 10.1109/NoF62948.2024.10741434

M3 - Conference contribution

AN - SCOPUS:85211901080

T3 - Proceedings of the 15th International Conference on Network of the Future, NoF 2024

SP - 169

EP - 177

BT - Proceedings of the 15th International Conference on Network of the Future, NoF 2024

A2 - Mahmoodi, Toktam

A2 - Munoz, Raul

A2 - Chemouil, Prosper

A2 - Troia, Sebastian

A2 - Nguyen, Thi-Mai-Trang

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 15th International Conference on Network of the Future, NoF 2024

Y2 - 2 October 2024 through 4 October 2024

ER -

Unveiling SDN Controller Identity through Timing Side Channel

Abstract

Publication series

Conference

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this