Attacks in SDN

• SDN has a single point of failure that increases the risk of potential threats.
• The primary threats to SDN architectures are DoS and DDoS attacks.

Contoller overloading

• The controller's capabilities may be overwhelmed by the processing of many flooded requests generated by DDoS attacks.

Switch overloading

• When a switch cannot find a corresponding entry in the flow table for a malicious packet, unmatched entry requests are stored in a single buffer and then sent to the controller for a specific rule application. (Packet in Message)
• Flow table overloading attack is an attack aiming to exhaust the flow table entries of a switch

A blockchain for verifying flow rules

• Research is being conducted on a method to verify flow rules using blockchain technology.
• The flow rules for each incoming packet are verified by the blockchain.