lopezalvar/awesome-sdn-security

Collection of SDN security related resources

Awesome SDN Security

Table of Contents

• Papers
• Presentations
• Conference Talks
• Tools
• Webs
• Blog posts
• Vulnerabilities

SDN Security Papers

• Exploiting pitfalls in software-defined networking implementation - by Dylan Smith, Victor Cionca, Sean McSweeny, Donna O'Shea [June 2016]
• FRESCO: Modular Composable Security Services for Software-Defined Networks - by Seugwon Shin, Phillip Porras, Vinod Yegneswaran, Martin Fong, Guofei Gu, Mabry Tyson [February 2013]
• Outsmarting Network Security with SDN Teleportation by Kashyap Thimmaraju, Liron Schiff, Stefan Schmid [April 2017]
• SDN-Guard: DoS Attacks Mitigation in SDN Networks by Lobna Dridi, Mohamed Faten Zhani [2016 5th IEEE International Conference on Cloud Networking (Cloudnet)]
• Software-Defined Networking (SDN) and Distributed Denial of Service (DDoS) Attacks in Cloud Computing Environments: A Survey, Some Research Issues, and Challenges by Qiao Yan, F. Richard Yu, Qingxiang Gong [IEEE Communications Surveys & Tutorials ( Volume: 18, Issue: 1, Firstquarter 2016 )]
• SDN-enabled Traffic Engineering and Advanced Blackholing at IXPs by Christoph Dietzel, Gianni Antichi, Ignacio Castro, Eder L Fernandes, Marco Chiesa, Daniel Kopp [SOSR ’17, April 3–4, 2017, Santa Clara, CA, USA]
• SDN Southbound Threats by Mohamed Mahdy [November 20, 2018]
• SLDP: A secure and lightweight link discovery protocol for software defined networking by Ajay Nehra, Meenakshi Tripathi, Manoj Singh Gaur, Ramesh Babu Battula and Chhagan Lal [Computer Networks Volume 150, 26 February 2019, Pages 102-116]
• A comprehensive survey of security threats and their mitigation techniques for next‐generation SDN controllers by Tao Han, Syed Rooh Ullah Jan, Zhiyuan Tan, Muhammad Usman, Mian Ahmad Jan, Rahim Khan, Yongzhao Xu [Concurrency and Computation: Practice and Experience, 17 April 2019]

SDN Security related presentations

• FRESCO: Modular Composable Security Services for Software-Defined Networks - [NDSS 2013]
• Outsmarting Network Security with SDN Teleportation - by Kashyap Thimmaraju, Liron Schiff, Stefan Schmid [IEEE EURo S&P, PARIS, FRANCE April 2017]
• Taking Control of SDN-based Cloud Systems via the Data Plane - by Kashyap Thimmaraju, Bhargava Shastry, Tobias Fiebig, Felicitas Hetzelt, Jean-Pierre Seifert, Anja Feldmann and Stefan Schmid [ACM SOSR 2018, Los Angeles, USA March 2018]
• I DPID It My Way! A Covert Timing Channel in Software-Defined Networks - by Robert Krosche, Kashyap Thimmaraju, Liron Schiff and Stefan Schmid [IFIP Networking, Zurich, Switzerland, May 2018] by Ajay Nehra , Meenakshi Tripathi, Manoj Singh Gaur, Ramesh Babu Battula and Chhagan Lal [Computer Networks Volume 150, 26 February 2019, Pages 102-116]

SDN Security conference talks

• How To Hack SD-WAN And Keep Your Sanity? by Sergei Gordeichik [Ekoparty, 28 nov. 2018]

SDN Security Tools

• sdnpwn
• DELTA: SDN SECURITY EVALUATION FRAMEWORK

SDN Security related webs

• blog.cyberreboot.org
  • Deep Session Learning for Cyber Security
  • TCPDump, and the care and feeding of an intelligent SDN
• SDNsecurity.org
• sdnpwn.net
  • Data Plane ARP Cache Poisoning

SDN Security related Blog Posts

• An Exploit Chain Against Citrix SD-WAN by Chris Lyne [Tenable TechBlog, 11 july 2019]

SDN Security related vulnerabilities

• HPE VAN
  • HPE VAN SDN Unauthenticated Remote Root Vulnerability 25 June 2018
    • packetstormsecurity.com Python exploit
    • exploit-db.com Python exploit
    • exploit-db.com Metasploit Module