Journal of Information Systems and Informatics (Mar 2024)
An Integrated Framework for Controllers Placement and Security in Software-Defined Networks Ecosystem
Abstract
In the evolving landscape of Software-Defined Networking (SDN), the strategic placement of controllers poses a critical challenge that necessitate a precise balance between network performance and security. This paper presents an integrated framework for enhancing security and performance in SDN by combining controller placement and intrusion detection systems (IDS). Unlike existing solutions which were implemented disjointedly, we propose a holistic approach that leverages the proximity of controllers to network traffic for real-time threat detection, rapid response, and mitigation of security attacks. We employ an advanced clustering model for optimal controller placement, reducing costs and latency while ensuring reliability and balanced loads. In addition, we utilize k-nearest neighbour (KNN) for efficient anomaly detection in our IDS for improved network security. Experimental results confirm the framework’s effectiveness in strengthening SDN security and resilience. The enhanced-DBSCAN-based CPP model significantly minimized the cost, and latency, and ensured continuous operation in dynamic SDN environments while the KNN-based IDS shows effectiveness in improving threat detection capabilities, achieving high detection accuracy of 100% on the LAN dataset, outperforming other machine learning models such as Random Forest and Naïve Bayes. The indication is that strategic controller deployment, in conjunction with IDS, can significantly bolster threat detection, response times, and the overall security stance of the SDN environment.
Keywords
